CVE-2018-13789

An issue was discovered in Descor Infocad FM before 3.1.0.0. An unauthenticated web service allows the retrieval of files on the web server and on reachable SMB servers.
Configurations

Configuration 1 (hide)

cpe:2.3:a:descor:infocad_fm:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-10-10 21:29

Updated : 2024-02-28 16:48


NVD link : CVE-2018-13789

Mitre link : CVE-2018-13789

CVE.ORG link : CVE-2018-13789


JSON object : View

Products Affected

descor

  • infocad_fm
CWE
CWE-287

Improper Authentication

CWE-294

Authentication Bypass by Capture-replay

CWE-522

Insufficiently Protected Credentials