Lucene search
K

4 matches found

NVD
NVD
added 2023/02/23 3:15 p.m.29 views

CVE-2023-0815

Potential Insertion of Sensitive Information into Jetty Log Files in multiple versions of OpenNMS Meridian and Horizon could allow disclosure of usernames and passwords if the logging level is set to debug. Users should upgrade to Meridian 2023.1.0 or newer, or Horizon 31.0.4. Meridian and Horizo...

6.8CVSS6.5AI score0.00633EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/02/23 2:52 p.m.7 views

CVE-2023-0815 Plaintext Password Present in the Web logs

Potential Insertion of Sensitive Information into Jetty Log Files in multiple versions of OpenNMS Meridian and Horizon could allow disclosure of usernames and passwords if the logging level is set to debug. Users should upgrade to Meridian 2023.1.0 or newer, or Horizon 31.0.4. Meridian and Horizo...

6.8CVSS6.5AI score0.00633EPSS
Exploits0References2
CVE
CVE
added 2023/02/23 2:52 p.m.65 views

CVE-2023-0815

CVE-2023-0815 affects OpenNMS Meridian and Horizon (Jetty logging path). The issue enables potential leakage of usernames and passwords via Jetty log files when debug-level logging is active. Affected products are OpenNMS Meridian in multiple versions and Horizon, with remediation guidance to upg...

6.8CVSS6.4AI score0.00633EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2023/02/23 2:52 p.m.32 views

CVE-2023-0815 Plaintext Password Present in the Web logs

Potential Insertion of Sensitive Information into Jetty Log Files in multiple versions of OpenNMS Meridian and Horizon could allow disclosure of usernames and passwords if the logging level is set to debug. Users should upgrade to Meridian 2023.1.0 or newer, or Horizon 31.0.4. Meridian and Horizo...

6.8CVSS6.7AI score0.00633EPSS
Exploits0References2
Rows per page
Query Builder