Описание
app/operator_panel/index_inc.php in the Operator Panel module in FusionPBX 4.4.3 suffers from an information disclosure vulnerability due to excessive debug information, which allows authenticated administrative attackers to obtain credentials and other sensitive information.
Ссылки
- Third Party Advisory
- PatchThird Party Advisory
- Third Party Advisory
- PatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:fusionpbx:fusionpbx:4.4.3:*:*:*:*:*:*:*
EPSS
Процентиль: 75%
0.0086
Низкий
7.2 High
CVSS3
4 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
CVSS3: 7.2
github
больше 3 лет назад
app/operator_panel/index_inc.php in the Operator Panel module in FreePBX 4.4.3 suffers from an information disclosure vulnerability due to excessive debug information, which allows authenticated administrative attackers to obtain credentials and other sensitive information.
EPSS
Процентиль: 75%
0.0086
Низкий
7.2 High
CVSS3
4 Medium
CVSS2
Дефекты
CWE-200