2 matches found
CVE-2024-41108
FOG is a free open-source cloning/imaging/rescue suite/inventory management system. The hostinfo page has missing/improper access control since only the host's mac address is required to obtain the configuration information. This data can only be retrieved if a task is pending on that host...
CVE-2024-41108
CVE-2024-41108 (FOG) affects the hostinfo page in FOG, where missing/improper access control allows configuration data to be retrieved using only the host’s MAC address, but only if a task is pending on that host; otherwise an error "Invalid tasking!" is returned. The domain password in the hosti...