3 matches found
CVE-2020-21994
AVE DOMINAplus =1.10.x suffers from clear-text credentials disclosure vulnerability that allows an unauthenticated attacker to issue a request to an unprotected directory that hosts an XML file '/xml/authClients.xml' and obtain administrative login information that allows for a successful...
CVE-2020-21994
CVE-2020-21994 affects AVE DOMINAplus <= 1.10.x. The issue is a clear-text credentials disclosure where an unauthenticated attacker can access an unprotected directory hosting /xml/authClients.xml and obtain administrative login information, enabling a authentication bypass. Reported as high-s...
CVE-2020-21994
AVE DOMINAplus =1.10.x suffers from clear-text credentials disclosure vulnerability that allows an unauthenticated attacker to issue a request to an unprotected directory that hosts an XML file '/xml/authClients.xml' and obtain administrative login information that allows for a successful...