FHEM 6.0 fhem/FileLog_logWrapper file information disclosure

entryeditHistoryDiffjsonxmlCTI

A vulnerability, which was classified as problematic, has been found in FHEM 6.0. Affected by this issue is an unknown function of the file fhem/FileLog_logWrapper. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1092885202/15/2021VulD...cvss3_nvd_basescore7.5nist.gov02/15/2021accepted90
1092885102/15/2021VulD...cvss2_nvd_basescore5.0nist.gov02/15/2021accepted90
1092885002/15/2021VulD...cvss3_meta_tempscore5.5see documentation02/15/2021accepted90
1092884902/15/2021VulD...cvss3_meta_basescore5.5see documentation02/15/2021accepted90
1092884802/15/2021VulD...cvss2_nvd_aiNnvd.nist.gov02/15/2021accepted70
1092884702/15/2021VulD...cvss2_nvd_iiNnvd.nist.gov02/15/2021accepted70
1092884602/15/2021VulD...cvss2_nvd_ciPnvd.nist.gov02/15/2021accepted70
1092884502/15/2021VulD...cvss2_nvd_auNnvd.nist.gov02/15/2021accepted70
1092884402/15/2021VulD...cvss2_nvd_acLnvd.nist.gov02/15/2021accepted70
1092884302/15/2021VulD...cvss2_nvd_avNnvd.nist.gov02/15/2021accepted70
1092884202/15/2021VulD...cvss3_nvd_aNnvd.nist.gov02/15/2021accepted70
1092884102/15/2021VulD...cvss3_nvd_iNnvd.nist.gov02/15/2021accepted70
1092884002/15/2021VulD...cvss3_nvd_cHnvd.nist.gov02/15/2021accepted70
1092883902/15/2021VulD...cvss3_nvd_sUnvd.nist.gov02/15/2021accepted70
1092883802/15/2021VulD...cvss3_nvd_uiNnvd.nist.gov02/15/2021accepted70
1092883702/15/2021VulD...cvss3_nvd_prNnvd.nist.gov02/15/2021accepted70
1092883602/15/2021VulD...cvss3_nvd_acLnvd.nist.gov02/15/2021accepted70
1092883502/15/2021VulD...cvss3_nvd_avNnvd.nist.gov02/15/2021accepted70
1092883402/15/2021VulD...cve_nvd_summaryLocal file inclusion in FHEM 6.0 allows in fhem/FileLog_logWrapper file parameter can allow an attacker to include a file, which can lead to sensitive information disclosure.cve.mitre.org02/15/2021accepted70
1092883302/15/2021VulD...cve_assigned1597269600cve.mitre.org02/15/2021accepted70

Do you need the next level of professionalism?

Upgrade your account now!