Описание
A sensitive information disclosure in HCL BigFix Compliance allows a remote attacker to access files under the WEB-INF directory, which may contain Java class files and configuration information, leading to unauthorized access to application internals.
EPSS
Процентиль: 12%
0.00041
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-497
Связанные уязвимости
CVSS3: 5.3
github
10 дней назад
A sensitive information disclosure in HCL BigFix Compliance allows a remote attacker to access files under the WEB-INF directory, which may contain Java class files and configuration information, leading to unauthorized access to application internals.
EPSS
Процентиль: 12%
0.00041
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-497