2 matches found
CVE-2022-47554 Exposure of Sensitive Information in Ormazabal products
Exposure of sensitive information in ekorCCP and ekorRCI, potentially allowing a remote attacker to obtain critical information from various .xml files, including .xml files containing credentials, without being authenticated within the web server...
CVE-2022-47554
CVE-2022-47554 targets Ormazabal ekorCCP and ekorRCI, exposing sensitive information from various .xml files (including credentials) without authentication. Affected software: ekorCCP/ekorRCI (Ormazabal product family). Root cause: exposure of protected data via unsecured access to XML files on t...