CVE Daily

CVE-2019-20074

On Netis DL4323 devices, any user role can view sensitive information, such as a...

High CVSS 8.8

Overview

On Netis DL4323 devices, any user role can view sensitive information, such as a user password or the FTP password, via the form2saveConf.cgi page.

CWE: CWE-269 Published: 2019-12-30T00:15:11.550
Risk analysis

This vulnerability is rated 🟠 HIGH.

  • CVSS: 8.8 (HIGH)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags