CVE-2018-11634

2018-07-0317:00:00

mitre

www.cve.org

AI Score

7.5

Confidence

High

EPSS

Percentile

5.1%

JSON

Plaintext Storage of Passwords in the administrative console in Dialogic PowerMedia XMS before 3.5 SU2 allows local users to access the web application’s user passwords in cleartext by reading /var/www/xms/xmsdb/default.db.

References

d3adend.org/blog/?p=1398