2 matches found
CVE-2020-24765
InterMind iMind Server through 3.13.65 allows remote unauthenticated attackers to read the self-diagnostic archive via a direct api/rs/monitoring/rs/api/system/dump-diagnostic-info?server=127.0.0.1 request...
CVE-2020-24765
InterMind iMind Server up to version 3.13.65 is affected by an unauthenticated remote read of the self‑diagnostic archive via the endpoint /api/rs/monitoring/rs/api/system/dump-diagnostic-info?server=127.0.0.1. The issue allows remote attackers to access diagnostic archives, and reports describe ...