Security Advisory

CVE-2021-23858

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-10-04 17:32:22

Last updated 2024-08-03 19:14:09

Assigner bosch

State PUBLISHED

Description

Information disclosure: The main configuration, including users and their hashed passwords, is exposed by an unprotected web server resource and can be accessed without authentication. Additionally, device details are exposed which include the serial number and the firmware version by another unprotected web server resource.

← Browse all CVEs View on cve.org ↗