IBERMATICA RPS 2019 Information Exposure Vulnerability

IBERMATICA RPS 2019 Information Exposure Vulnerability

CVE-2023-3349 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Information exposure vulnerability in IBERMATICA RPS 2019, which exploitation could allow an unauthenticated user to retrieve sensitive information, such as usernames, IP addresses or SQL queries sent to the application. By accessing the URL /RPS2019Service/status.html, the application enables the logging mechanism by generating the log file, which can be downloaded.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.