InterMind iMind Server through 3.13.65 allows remote unauthenticated attackers to read the self-diagnostic archive via a direct api/rs/monitoring/rs/api/system/dump-diagnostic-info?server=127.0.0.1 request.
References
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-10-20T19:11:24

Updated: 2024-08-04T15:19:09.350Z

Reserved: 2020-08-28T00:00:00

Link: CVE-2020-24765

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-10-20T20:15:14.990

Modified: 2024-11-21T05:16:03.527

Link: CVE-2020-24765

cve-icon Redhat

No data.