Описание
A missing authentication for critical function vulnerability in the /servlet/baServer3 endpoint of Interinfo DreamMaker versions before 2025/10/22 allows remote attackers to access exposed administrative functionality without prior authentication.
EPSS
Процентиль: 55%
0.00326
Низкий
Дефекты
CWE-306
Связанные уязвимости
github
8 дней назад
A missing authentication for critical function vulnerability in the /servlet/baServer3 endpoint of Interinfo DreamMaker versions before 2025/10/22 allows remote attackers to access exposed administrative functionality without prior authentication.
EPSS
Процентиль: 55%
0.00326
Низкий
Дефекты
CWE-306