Sphinx Technologies Sphinx 3.1.1 by default has no authentication and listens on 0.0.0.0, making it exposed to the internet (unless filtered by a firewall or reconfigured to listen to 127.0.0.1 only).
References
Configurations
History
07 Nov 2023, 03:04
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2019-08-22 13:15
Updated : 2024-02-28 17:08
NVD link : CVE-2019-14511
Mitre link : CVE-2019-14511
CVE.ORG link : CVE-2019-14511
JSON object : View
Products Affected
sphinxsearch
- sphinx
CWE
CWE-306
Missing Authentication for Critical Function