CVE-2015-7902 in Mango Automationinfo

Summary

Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 provides different error messages for failed login attempts in unspecified circumstances, which allows remote attackers to obtain sensitive information via a series of requests.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

10/22/2015

Disclosure

10/28/2015

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
78933	Infinite Automation Mango Automation Error Message User information disclosure	200	Proof-of-Concept	Official fix	CVE-2015-7902

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸