CVE-2018-14822

Summary

Entes EMG12 versions 2.57 and prior an information exposure through query strings vulnerability in the web interface has been identified, which may allow an attacker to impersonate a legitimate user and execute arbitrary code.

Affected Software

VendorProductVersion RangeStatus
EntesEMG12All versions prior to version 2.57affected

Weaknesses

  • CWE-598: INFORMATION EXPOSURE THROUGH QUERY STRINGS IN GET REQUEST CWE-598

ADP Enrichment

CVE Program Container

Additional References

References