Lucene search
PRIOn knowledge basePRION:CVE-2018-10286HistoryApr 22, 2018 - 1:29 p.m.
Design/Logic Flaw
2018-04-2213:29:00
PRIOn knowledge base
www.prio-n.com
1
The Ericsson-LG iPECS NMS A.1Ac web application discloses sensitive information such as the NMS admin credentials and the PostgreSQL database credentials to logged-in users via the responses to certain HTTP POST requests. In order to be able to see the credentials in cleartext, an attacker needs to be authenticated.
Related
cve
cve
CVE-2018-10286
2018-04-22 13:29:00
cvelist
cvelist
CVE-2018-10286
2018-04-22 13:00:00
nvd
nvd
CVE-2018-10286
2018-04-22 13:29:00
exploitpack
exploitpack
Ericsson-LG iPECS NMS A.1Ac - Cleartext Credential Disclosure
2018-04-24 00:00:00
zdt
zdt
Ericsson-LG iPECS NMS A.1Ac - Cleartext Credential Disclosure Exploit
2018-04-24 00:00:00
packetstorm
packetstorm
Ericsson-LG iPECS NMS A.1Ac Credential Disclosure
2018-04-25 00:00:00
exploitdb
exploitdb
Ericsson-LG iPECS NMS A.1Ac - Cleartext Credential Disclosure
2018-04-24 00:00:00