CVE-2019-3993

ELOG 3.1.4-57bea22 and below is affected by an information disclosure vulnerability. A remote unauthenticated attacker can recover a user's password hash by sending a crafted HTTP POST request.
Configurations

Configuration 1

cpe:2.3:a:elog_project:elog:*:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*

Information

Published : 2019-12-17 10:15

Updated : 2020-10-15 07:35


NVD link : CVE-2019-3993

Mitre link : CVE-2019-3993

Products Affected
No products.
CWE
CWE-319

Cleartext Transmission of Sensitive Information