Epicor Enterprise 7.4 before FS74SP6_HotfixTL054181 allows attackers to obtain the (1) Database Connection and (2) E-mail Connection passwords by reading HTML source code of the database connection and email settings page.
References
Configurations
History
No history.
Information
Published : 2014-11-04 02:55
Updated : 2024-02-28 12:20
NVD link : CVE-2014-4311
Mitre link : CVE-2014-4311
CVE.ORG link : CVE-2014-4311
JSON object : View
Products Affected
epicor
- epicor_enterprise
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor