A vulnerability was found in Topdata Inner Rep Plus WebServer 2.01. It has been classified as problematic. Affected is an unknown function of the file /InnerRepPlus.html of the component Operator Details Form. The manipulation leads to missing password field masking. It is possible to launch the attack remotely. The vendor was contacted early about this disclosure but did not respond in any way.
References
Link | Resource |
---|---|
https://vuldb.com/?ctiid.280914 | Permissions Required |
https://vuldb.com/?id.280914 | Third Party Advisory |
https://vuldb.com/?submit.421292 | Third Party Advisory |
Configurations
History
06 Nov 2024, 22:05
Type | Values Removed | Values Added |
---|---|---|
First Time |
Topdata inner Rep Plus
Topdata |
|
References | () https://vuldb.com/?ctiid.280914 - Permissions Required | |
References | () https://vuldb.com/?id.280914 - Third Party Advisory | |
References | () https://vuldb.com/?submit.421292 - Third Party Advisory | |
CPE | cpe:2.3:a:topdata:inner_rep_plus:2.01:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 3.3
v3 : 4.9 |
21 Oct 2024, 17:10
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
18 Oct 2024, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-10-18 19:15
Updated : 2024-11-06 22:05
NVD link : CVE-2024-10122
Mitre link : CVE-2024-10122
CVE.ORG link : CVE-2024-10122
JSON object : View
Products Affected
topdata
- inner_rep_plus
CWE
CWE-549
Missing Password Field Masking