CVE-2020-8497

In Artica Pandora FMS through 7.42, an unauthenticated attacker can read the chat history. The file is in JSON format and it contains user names, user IDs, private messages, and timestamps.

Published: Mar 23, 2020
Updated: Apr 14, 2023
CVE: CVE-2020-8497
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.3
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

CWE-306

Affected Software
References

Software	From	Fixed in
artica / pandora_fms	-	7.42.x

https://k4m1ll0.com/cve-2020-8497.html

Vulnerability Database

289,871

CVE-2020-8497