Information disclosure in Op5 Monitor
CVE-2012-0263
monitor/index.php in op5 Monitor and op5 Appliance before 5.5.1 allows remote authenticated users to obtain sensitive information such as database and user credentials via error messages that are triggered by (1) a malformed hoststatustype…
Vulnerability class: Information Disclosure
EPSS: 0.004 (62.8th percentile) — read the EPSS interpretation.
Affected products
- Op5 Monitor — versions 5.3.5, 5.4.0, 5.4.2
- N/a — versions n/a
Weakness classification (CWE)
References
- 78067 (x_refsource_OSVDB, vdb-entry)
- cve@mitre.org (x_refsource_CONFIRM)
- cve@mitre.org (x_refsource_CONFIRM)
- 47344 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
- 20120107 OP5 Monitor - Multiple Vulnerabilities (mailing-list, x_refsource_FULLDISC)
- cve@mitre.org (Exploit, x_refsource_MISC)