Security Advisory

CVE-2023-3349

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-03 13:24:44

Last updated 2024-09-19 19:47:16

Assigner INCIBE

State PUBLISHED

Description

Information exposure vulnerability in IBERMATICA RPS 2019, which exploitation could allow an unauthenticated user to retrieve sensitive information, such as usernames, IP addresses or SQL queries sent to the application. By accessing the URL /RPS2019Service/status.html, the application enables the logging mechanism by generating the log file, which can be downloaded.

← Browse all CVEs View on cve.org ↗