CVE-2014-2871 in Commonspot Content Serverinfo

Summary

PaperThin CommonSpot before 7.0.2 and 8.x before 8.0.3 relies on an HTTP session for entering credentials on login pages, which allows remote attackers to obtain sensitive information by sniffing the network.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Responsible

Reservation

04/15/2014

Disclosure

04/15/2014

Moderation

VulDB entry created

Entries

VDB-69357

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

4.3

EPSS

0.00338

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2014-2871
NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-2871
CVE Details	https://www.cvedetails.com/cve/CVE-2014-2871/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!