Description
Insertion of sensitive information into log file vulnerability in syslink software AG Avantra on Linux, Windows allows Resource Leak Exposure. This issue affects Avantra: before 25.3.0.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
https://support.avantra.com/hc/en-us/articles/5535487249183
Scores
CVSS v3
7.5
EPSS
0.0028
EPSS Percentile
19.9%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:L/I:H/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-532
Status
published
Products (2)
avantra/avantra
< 25.3.0
syslink software AG/Avantra
< 25.3.0
Published
May 22, 2026
Tracked Since
May 22, 2026