4 matches found
ELOG Project Information Disclosure (CVE-2019-3993)
An information disclosure vulnerability exists in ELOG Project. Successful exploitation of this vulnerability could cause the ELOG server to disclose the password hash for a user...
Fedora 30 : elog (2020-9f8bc040c8)
Security fix for CVE-2019-3993, CVE-2019-3994, CVE-2019-3995, CVE-2019-3992, CVE-2019-3996 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possibl...
Fedora 31 : elog (2020-f49fe7f011)
Security fix for CVE-2019-3993, CVE-2019-3994, CVE-2019-3995, CVE-2019-3992, CVE-2019-3996 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possibl...
CVE-2019-3993
Summary: CVE-2019-3993 affects ELOG 3.1.4-57bea22 and earlier. A remote unauthenticated attacker can cause an information disclosure to recover a user’s password hash via a crafted HTTP POST request, exposing credential material. Affected versions: ELOG 3.1.4-57bea22 and earlier (per Red Hat/RH, ...