Information Disclosure Vulnerability in Emmanuel MyDomoAtHome (MDAH) REST API Domoticz ISS Gateway 0.2.40

Information Disclosure Vulnerability in Emmanuel MyDomoAtHome (MDAH) REST API Domoticz ISS Gateway 0.2.40

CVE-2020-21990 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Emmanuel MyDomoAtHome (MDAH) REST API REST API Domoticz ISS Gateway 0.2.40 is affected by an information disclosure vulnerability due to improper access control enforcement. An unauthenticated remote attacker can exploit this, via a specially crafted request to gain access to sensitive information.

Learn more about our Api Penetration Testing.