An access control issue in Makves DCAP v3.0.0.122 allows...
High severity
Unreviewed
Published
Jun 21, 2023
to the GitHub Advisory Database
•
Updated Apr 4, 2024
Description
Published by the National Vulnerability Database
Jun 21, 2023
Published to the GitHub Advisory Database
Jun 21, 2023
Last updated
Apr 4, 2024
An access control issue in Makves DCAP v3.0.0.122 allows unauthenticated attackers to obtain cleartext credentials via a crafted web request to the product API.
References