CVE-2020-6170

An authentication bypass vulnerability on Genexis Platinum-4410 v2.1 P4410-V2 1.28 devices allows attackers to obtain cleartext credentials from the HTML source code of the cgi-bin/index2.asp URI.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:genexis:platinum-4410_firmware:1.28:*:*:*:*:*:*:*
cpe:2.3:h:genexis:platinum-4410:v2:*:*:*:*:*:*:*

Information

Published : 2020-01-07 22:15

Updated : 2022-01-01 12:09


NVD link : CVE-2020-6170

Mitre link : CVE-2020-6170


JSON object : View

CWE
CWE-306

Missing Authentication for Critical Function

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

Advertisement

dedicated server usa

Products Affected

genexis

  • platinum-4410_firmware
  • platinum-4410