In Artica Pandora FMS through 7.42, an unauthenticated attacker can read the chat history. The file is in JSON format and it contains user names, user IDs, private messages, and timestamps.
References
Link | Resource |
---|---|
https://k4m1ll0.com/cve-2020-8497.html | Exploit Third Party Advisory |
Configurations
History
No history.
Information
Published : 2020-03-23 15:15
Updated : 2024-02-28 17:47
NVD link : CVE-2020-8497
Mitre link : CVE-2020-8497
CVE.ORG link : CVE-2020-8497
JSON object : View
Products Affected
artica
- pandora_fms
CWE
CWE-306
Missing Authentication for Critical Function