CVE-2013-3507

GroundWork Monitor Enterprise 6.7.0 - Authenticated Sensitive Information Exposure via NeDi Component

Title source: llm
STIX 2.1

Description

The NeDi component in GroundWork Monitor Enterprise 6.7.0 allows remote authenticated users to obtain sensitive information via a direct request for (1) a configuration file, (2) a database dump, or (3) the Tomcat status context.

Scores

EPSS 0.0134
EPSS Percentile 67.8%

Details

CWE
CWE-200
Status published
Products (1)
gwos/groundwork_monitor 6.7.0
Published May 08, 2013
Tracked Since Feb 18, 2026