2 matches found
CVE-2020-19676
Nacos 1.1.4 is affected by: Incorrect Access Control. An environment can be set up locally to get the service details interface. Then other Nacos service names can be accessed through the service list interface. Service details can then be accessed when not logged in...
Weak Password Vulnerability in Alibaba Nacos
Nacos is the latest open source project from Alibaba. Alibaba Nacos has a weak password vulnerability. Attackers use the default weak password to log in to the system background to obtain sensitive information...