Terminalfour Information Disclosure Vulnerability

2023-04-1800:00:00

China National Vulnerability Database

www.cnvd.org.cn

terminalfour

information disclosure

vulnerability

higher education

debug logging

sensitive information

exploitation

0.001 Low

EPSS

Percentile

33.0%

JSON

Terminalfour is a digital marketing and web content management platform for higher education from Terminalfour, Inc. Terminalfour suffers from an information disclosure vulnerability that stems from insufficient protection of sensitive information when debug logging is enabled. An attacker could exploit this vulnerability to obtain sensitive information.

CPENameOperatorVersion
terminalfour terminalfour <8.2.eq18.2.2
terminalfour terminalfour >=8.2.18.3，<8.eq2.18.7
terminalfour terminalfour >=8.3.0，<8.eq3.11.1
terminalfour terminalfour >=8.3.12，<8.eq3.14.1

Name	Operator	Version
terminalfour terminalfour <8.2.	eq	18.2.2
terminalfour terminalfour >=8.2.18.3，<8.	eq	2.18.7
terminalfour terminalfour >=8.3.0，<8.	eq	3.11.1
terminalfour terminalfour >=8.3.12，<8.	eq	3.14.1

0.001 Low

EPSS

Percentile

33.0%

JSON

Related for CNVD-2023-29789