← Back to CVE List

CVE-2018-14703

Published: 2018-12-03T22:29Z
Last Modified: 2024-11-21T03:49Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Incorrect access control in the /mysql/api/droboapp/data endpoint in Drobo 5N2 NAS version 4.0.5-13.28.96115 allows unauthenticated attackers to retrieve the MySQL database root password. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt