← back
CVE-2019-1010308

CVE-2019-1010308

EPSS 1.6%
Aquaverde GmbH Aquarius CMS prior to version 4.1.1 is affected by: Incorrect Access Control. The impact is: The access to the log file is not restricted. It contains sensitive information like passwords etc. The component is: log file. The attack vector is: open the file.
Affected products
Aquaverde GmbH · Aquarius CMS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/aquaverde/aquarius-corehttps://github.com/aquaverde/aquarius-core/commit/e1af89aa9df07ea265d879518ede9eb98aa494e0