PRTG Network Monitor before 20.1.57.1745 allows remote unauthenticated attackers to obtain information about probes running or the server itself (CPU usage, memory, Windows version, and internal statistics) via an HTTP request, as demonstrated by type=probes to login.htm or index.htm.
References
Link | Resource |
---|---|
https://github.com/ch-rigu/PRTG-Network-Monitor-Information-Disclosure | Broken Link |
https://github.com/ch-rigu/PRTG-Network-Monitor-Information-Disclosure | Broken Link |
Configurations
History
21 Nov 2024, 04:58
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/ch-rigu/PRTG-Network-Monitor-Information-Disclosure - Broken Link |
Information
Published : 2020-04-05 00:15
Updated : 2024-11-21 04:58
NVD link : CVE-2020-11547
Mitre link : CVE-2020-11547
CVE.ORG link : CVE-2020-11547
JSON object : View
Products Affected
paessler
- prtg_network_monitor
CWE
CWE-306
Missing Authentication for Critical Function