Описание
MRO Maximo Self Service 4 and 5 stores certain information under the web document root using file extensions that are not processed by Tomcat, which allows remote attackers to obtain sensitive information via a direct request for the file, such as MXServer.properties.
Ссылки
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:mro_software:maximo_self_service:4.0:*:*:*:*:*:*:*
cpe:2.3:a:mro_software:maximo_self_service:5.0:*:*:*:*:*:*:*
EPSS
Процентиль: 62%
0.00427
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
MRO Maximo Self Service 4 and 5 stores certain information under the web document root using file extensions that are not processed by Tomcat, which allows remote attackers to obtain sensitive information via a direct request for the file, such as MXServer.properties.
EPSS
Процентиль: 62%
0.00427
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other