CVE-2018-14703
CVE-2018-14703 affects Drobo 5N2 NAS (version 4.0.5-13.28.96115). The issue is improper access control on the /mysql/api/droboapp/data endpoint, enabling unauthenticated attackers to retrieve the MySQL root password. The NVD entry notes a high-impact condition (CVE-3.0 vector: network, no auth, h...