4 matches found
CVE-2018-12525
perfSONAR MaDDash 2.0.2 is affected by CVE-2018-12525: a direct request to /images/ yields a directory listing, potentially exposing sensitive information. The vulnerability stems from improper directory exposure in MaDDash’ web UI assets, with affected paths including /maddash-webui/images/ and ...
CVE-2018-12524
MaDDash 2.0.2 is affected: a direct request to /lib/ exposes a directory listing, enabling potential disclosure of sensitive files from the perfSONAR MaDDash web UI. Public references exist (e.g., Exploit-DB, PacketStorm) showing directory-listing tests; no remediation/patch details are provided ...
CVE-2018-12522
CVE-2018-12522 affects perfSONAR MaDDash 2.0.2. A direct request to the /style/ path exposes a directory listing, enabling information disclosure about the application’s files (e.g., /style/, /lib/, /images/, /etc/ complete index). The NVD indicates a CVSS v3.0 base score of 5.3 (MEDIUM) with net...
CVE-2018-12523
PerfSONAR MaDDash 2.0.2 contains an information disclosure vulnerability: a direct request to /etc/ exposes a directory listing. Affected component is the MaDDash web UI (maddash-webui) handling /etc/. The issue allows enumeration of internal files and directories, which could reveal sensitive in...