Vulnerabilities > CVE-2020-19676 - Unspecified vulnerability in Alibaba Nacos 1.1.4
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
NONE Availability impact
NONE Summary
Nacos 1.1.4 is affected by: Incorrect Access Control. An environment can be set up locally to get the service details interface. Then other Nacos service names can be accessed through the service list interface. Service details can then be accessed when not logged in. (detail:https://github.com/alibaba/nacos/issues/2284)
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |