Описание
Apache Axis 1.0 allows remote attackers to obtain sensitive information by requesting a non-existent WSDL file, which reveals the installation path in the resulting exception message.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| axis | unfixed | package |
Примечания
only path disclosure
EPSS
Процентиль: 89%
0.04347
Низкий
Связанные уязвимости
ubuntu
почти 19 лет назад
Apache Axis 1.0 allows remote attackers to obtain sensitive information by requesting a non-existent WSDL file, which reveals the installation path in the resulting exception message.
nvd
почти 19 лет назад
Apache Axis 1.0 allows remote attackers to obtain sensitive information by requesting a non-existent WSDL file, which reveals the installation path in the resulting exception message.
CVSS3: 5.3
github
почти 4 года назад
Apache Axis allows Exposure of Sensitive Information to an Unauthorized Actor
EPSS
Процентиль: 89%
0.04347
Низкий