CVE-2018-13789
NONE EPSS 63.2%
Published Oct 10, 20187y ago · Modified Jun 17, 20262w ago
Published Oct 10, 2018 7y ago
Last Modified Jun 17, 2026 2w ago
Description
An issue was discovered in Descor Infocad FM before 3.1.0.0. An unauthenticated web service allows the retrieval of files on the web server and on reachable SMB servers.
Threat Intelligence
EPSS Exploit Probability
63.2% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 3
CWE-287 Improper Authentication Authentication
CWE-294
CWE-522
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| descor | infocad_fm | * | <3.1.0.0 |
References 1
- quantumleap.it https://www.quantumleap.it/infocad-facility-management-cve-2018-13789-unauthenticated-webservice-allows-retrieval-arbitrary-files/
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.