CVE-2014-9577

VDG Security SENSE <2.3.13 - Info Disclosure

Title source: llm
STIX 2.1

Description

VDG Security SENSE (formerly DIVA) 2.3.13 sends the user database when a user logs in, which allows remote authenticated users to obtain usernames and password hashes by logging in to TCP port 51410 and reading the response.

Scores

EPSS 0.0176
EPSS Percentile 75.3%

Details

CWE
CWE-200
Status published
Products (1)
vdgsecurity/vdg_sense 2.3.13
Published Jan 08, 2015
Tracked Since Feb 18, 2026