2021-08-16 03:35:45
mitre
PUBLISHED
OneNav 0.9.12 allows Information Disclosure of the onenav.db3 contents. NOTE: the vendors recommended solution is to block the access via an NGINX configuration file.