CVE-2022-39821

Description

In NOKIA 1350 OMS R14.2, an Insertion of Sensitive Information into an Application Log File vulnerability occurs. The web application stores critical information, such as cleartext user credentials, in world-readable files in the filesystem.

Related CPE's

References

https://www.gruppotim.it/it/footer/red-team.html

CvssV3 impact

CvssV2 impact