2 matches found
CVE-2024-42349 FOG has a Log Information Disclosure
FOG is a cloning/imaging/rescue suite/inventory management system. FOG Server 1.5.10.41.4 and earlier can leak authorized and rejected logins via logs stored directly on the root of the web server. FOG Server creates 2 logs on the root of the web server fogloginaccepted.log and fogloginfailed.log...
PT-2024-29886 · Unknown · Fog Server
Name of the Vulnerable Software and Affected Versions: FOG Server versions 1.5.10.41.4 and earlier Description: The issue concerns the exposure of sensitive information via logs stored on the web server. Specifically, FOG Server creates two logs, fog login accepted.log and fog login failed.log, o...