Vulnerabilities > CVE-2019-18864 - Unspecified vulnerability in Blaauwproducts Remote Kiln Control 3.0.0

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

blaauwproducts

NVD

Published: 2020-05-07

Updated: 2021-07-21

Summary

/server-info and /server-status in Blaauw Remote Kiln Control through v3.00r4 allow an unauthenticated attacker to gain sensitive information about the host machine.

Vulnerable Configurations

Part	Description	Count
Application	Blaauwproducts Blaauwproducts Remote Kiln Control 3.0.0 Blaauwproducts Remote Kiln Control *	2

References

https://github.com/lodestone-security/CVEs/blob/master/remote_kiln_control/an_unfortunate_kilnundrum.md