Unauthenticated Access to Sensitive Information in Geutebrueck re_porter 16

Unauthenticated Access to Sensitive Information in Geutebrueck re_porter 16

CVE-2018-15534 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Geutebrueck re_porter 16 before 7.8.974.20 has a possibility of unauthenticated access to sensitive information including usernames and hashes via a direct request for /statistics/gscsetup.xml on TCP port 12003.

Learn more about our User Device Pen Test.