| タイトル | Newgen Software Newgen OmniDocs 12.0.00 Use of Hard-coded Cryptographic Key |
|---|
| 説明 | Description
Newgen OmniDocs 12.0.00 is affected by an information disclosure vulnerability through which an unauthenticated attacker can access an exposed RSA private key from a publicly reachable location within the application infrastructure. The exposure of this sensitive cryptographic material could allow misuse for unauthorized decryption, token signing, or impersonation of trusted services, thereby compromising the confidentiality and integrity of the system. |
|---|
| ソース | ⚠️ https://drive.google.com/file/d/1_cBMYBQo09ZEfgF4FKXh08PneBZoBrVI/view?usp=sharing |
|---|
| ユーザー | kushkira (UID 60170) |
|---|
| 送信 | 2026年03月17日 11:52 (20 日 ago) |
|---|
| モデレーション | 2026年04月02日 10:02 (16 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 354828 [Newgen OmniDocs 迄 12.0.00 GetWebApiConfiguration connectionDetails 情報漏えい] |
|---|
| ポイント | 20 |
|---|