2 matches found
CVE-2018-14702
Incorrect access control in the /drobopix/api/drobo.php endpoint in Drobo 5N2 NAS version 4.0.5-13.28.96115 allows unauthenticated attackers to retrieve sensitive system information...
CVE-2018-14702
CVE-2018-14702 describes an improper access control in the Drobo 5N2 NAS, specifically the /drobopix/api/drobo.php endpoint used by DroboPix. Affects Drobo 5N2 NAS version 4.0.5-13.28.96115. An unauthenticated attacker can retrieve sensitive system information due to this access-control flaw. CVS...