Описание
Ajenti version version 2 contains a Improper Error Handling vulnerability in Login JSON request that can result in The requisition leaks a path of the server. This attack appear to be exploitable via By sending a malformed JSON, the tool responds with a traceback error that leaks a path of the server.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:ajenti:ajenti:2:*:*:*:*:*:*:*
EPSS
Процентиль: 49%
0.00264
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 5.3
debian
почти 8 лет назад
Ajenti version version 2 contains a Improper Error Handling vulnerabil ...
CVSS3: 5.3
github
больше 3 лет назад
Ajenti version version 2 contains a Improper Error Handling vulnerability in Login JSON request that can result in The requisition leaks a path of the server. This attack appear to be exploitable via By sending a malformed JSON, the tool responds with a traceback error that leaks a path of the server.
EPSS
Процентиль: 49%
0.00264
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-22