Security Advisory

CVE-2018-20220

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-03-17 20:51:20

Last updated 2024-08-05 11:58:18

Assigner mitre

State PUBLISHED

Description

An issue was discovered on Teracue ENC-400 devices with firmware 2.56 and below. While the web interface requires authentication before it can be interacted with, a large portion of the HTTP endpoints are missing authentication. An attacker is able to view these pages before being authenticated, and some of these pages may disclose sensitive information.

← Browse all CVEs View on cve.org ↗