ID:11 - Exploit for Information disclosure - CVE-2016-6435
Published: March 18, 2020
Vulnerability identifier: #VU782
Vulnerability risk: Low
CVE-ID: CVE-2016-6435
CWE-ID: CWE-200
Exploitation vector: Remote access
Vulnerable software:
Link to public exploit:
Vulnerability description
The vulnerability allows a remote authenticated user to obtain potentially sensitive data on the target system.
The weakness is due to improper input validation. Attackers can send a specially crafted parameter to the web console which when received by the victim allows a malicious user to read arbitrary files on the affected operating system.
Successful exploitation of the vulnerability leads to sensitive insormation disclosure.
The weakness is due to improper input validation. Attackers can send a specially crafted parameter to the web console which when received by the victim allows a malicious user to read arbitrary files on the affected operating system.
Successful exploitation of the vulnerability leads to sensitive insormation disclosure.