{
  "id": "CVE-2024-25830",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2024-02-29T01:44:16.533",
  "lastModified": "2024-02-29T13:49:29.390",
  "vulnStatus": "Awaiting Analysis",
  "descriptions": [
    {
      "lang": "en",
      "value": "F-logic DataCube3 v1.0 is vulnerable to Incorrect Access Control due to an improper directory access restriction. An unauthenticated, remote attacker can exploit this, by sending a URI that contains the path of the configuration file. A successful exploit could allow the attacker to extract the root and admin password."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://neroteam.com/blog/f-logic-datacube3-vulnerability-report",
      "source": "cve@mitre.org"
    }
  ]
}