Vulnerabilities > Debian > Freedombox > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-09-02 CVE-2020-25073 Exposure of Resource to Wrong Sphere vulnerability in Debian Freedombox
FreedomBox through 20.13 allows remote attackers to obtain sensitive information from the /server-status page of the Apache HTTP Server, because a connection from the Tor onion service (or from PageKite) is considered a local connection.
network
low complexity
debian CWE-668
5.0