CVE-2018-11637
The Dialogic PowerMedia XMS information disclosure (CVE-2018-11637) affects PowerMedia XMS 3.5 and earlier. A symbolic link in the web root enables remote attackers to read files under /var/, due to a web-root symlink. Impact: information leakage via administrative console exposure. Root cause: s...