Filtered by vendor Idashboards
Subscribe
Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2018-7210 | 1 Idashboards | 1 Idashboards | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
An issue was discovered in iDashboards 9.6b. It allows remote attackers to obtain sensitive information via a direct request for the idb/config?CMD=installLicense URI, as demonstrated by intranet IP addresses and names of guest accounts. | |||||
CVE-2018-7211 | 1 Idashboards | 1 Idashboards | 2024-02-04 | 4.3 MEDIUM | 8.1 HIGH |
An issue was discovered in iDashboards 9.6b. The SSO implementation is affected by a weak obfuscation library, allowing man-in-the-middle attackers to discover credentials. | |||||
CVE-2018-7209 | 1 Idashboards | 1 Idashboards | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
An issue was discovered in iDashboards 9.6b. It allows remote attackers to obtain sensitive information via a direct request for the idashboards/config.xml URI, as demonstrated by intranet URLs for reports. |