CVE-2019-17321

Summary

ClipSoft REXPERT 1.0.0.527 and earlier version have an information disclosure issue. When requesting web page associated with session, could leak username via session file path of HTTP response data. No authentication is required.

Affected Software

VendorProductVersion RangeStatus
ClipSoftREXPERT1.0.0.527 and earlieraffected

Weaknesses

  • CWE-200: CWE-200: Information Exposure

ADP Enrichment

CVE Program Container

Additional References

References