Security Advisory

CVE-2020-36917

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-06 15:53:23

Last updated 2026-01-15 21:37:30

Assigner VulnCheck

State PUBLISHED

Description

iDS6 DSSPro Digital Signage System 6.2 contains a sensitive information disclosure vulnerability that allows remote attackers to intercept authentication credentials through cleartext cookie transmission. Attackers can exploit the autoSave feature to capture user passwords during man-in-the-middle attacks on HTTP communications.

← Browse all CVEs View on cve.org ↗