Information disclosure in Carousel

#VU17393 Information disclosure in Carousel

Published: 2019-02-06

Vulnerability identifier: #VU17393

Vulnerability risk: Low

CVSSv3.1: 4.9 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:U/RC:C]

CVE-ID: CVE-2018-14573

CWE-ID: CWE-200

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Carousel
Web applications / Remote management & hosting panels

Vendor: Tightrope

Description
The vulnerability allows a remote attacker to obtain potentially sensitive information.

The vulnerability exists due to an unchanged default administrator password. A remote attacker can read arbitrary file on the system via the RenderingFetch API function.

Mitigation
Patch will be available on February 8.

Vulnerable software versions

Carousel: 7.0.0 - 7.0.4.104

External links
http://www.drewgreen.net/vulnerabilities-in-tightrope-media-systems-carousel/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in TRMS Carousel