Security Advisory

CVE-2014-1217

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-04-28 14:00:00

Last updated 2024-08-06 09:34:40

Assigner mitre

State PUBLISHED

Description

Livetecs Timelive before 6.2.8 does not properly restrict access to systemsetting.aspx, which allows remote attackers to change configurations and obtain the database connection string and credentials via unspecified vectors.

← Browse all CVEs View on cve.org ↗