Unrestricted Access to Java Class Methods in GE Intelligent Platforms Proficy Real-Time Information Portal

Unrestricted Access to Java Class Methods in GE Intelligent Platforms Proficy Real-Time Information Portal

CVE-2013-0652 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

GE Intelligent Platforms Proficy Real-Time Information Portal does not restrict access to methods of an unspecified Java class, which allows remote attackers to obtain a username listing via an RMI call.

Learn more about our User Device Pen Test.