In RACTF before commit f3dc89b, unauthenticated users are able to get the value of sensitive config keys that would normally be hidden to everyone except admins. All versions after commit f3dc89b9f6ab1544a289b3efc06699b13d63e0bd(3/10/20) are patched.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2020-10-05T15:15:13
Updated: 2024-08-04T13:08:23.234Z
Reserved: 2020-06-25T00:00:00
Link: CVE-2020-15235
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-10-05T16:15:12.237
Modified: 2024-11-21T05:05:09.330
Link: CVE-2020-15235
Redhat
No data.