Security Advisory

CVE-2020-25351

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-20 18:10:46

Last updated 2024-08-04 15:33:05

Assigner mitre

State PUBLISHED

Description

An information disclosure vulnerability in rConfig 3.9.5 has been fixed for version 3.9.6. This vulnerability allowed remote authenticated attackers to read files on the system via a crafted request sent to to the /lib/crud/configcompare.crud.php script.

← Browse all CVEs View on cve.org ↗