Unauthorized Access to Database Backups in Pandora FMS: A Sensitive Information Exposure Vulnerability

Unauthorized Access to Database Backups in Pandora FMS: A Sensitive Information Exposure Vulnerability

CVE-2023-41786 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Pandora FMS on all allows File Discovery. This vulnerability allows users with low privileges to download database backups. This issue affects Pandora FMS: from 700 through 772.

Learn more about our User Device Pen Test.