CVE-2010-5292

EUVD-2010-5251
Amberdms Billing System (ABS) before 1.4.1, when a multi-instance installation is configured, might allow local users to obtain sensitive information by reading the cache in between runs of the include/cron/services_usage.php cron job.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
1.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 17%
Affected Products (NVD)
VendorProductVersion
amberdmsamberdms_billing_system
𝑥
≤ 1.4.0
amberdmsamberdms_billing_system
1.0.0
amberdmsamberdms_billing_system
1.1.0
amberdmsamberdms_billing_system
1.2.0
amberdmsamberdms_billing_system
1.3.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://projects.jethrocarr.com/p/oss-amberdms-bs/source/tree/f23f1121bd137bf798c8d3f01d35fa297a285331/help/docs/RELEASE_NOTES
https://raw.github.com/jethrocarr/amberdms-bs/master/help/docs/CHANGELOG
https://projects.jethrocarr.com/p/oss-amberdms-bs/source/tree/f23f1121bd137bf798c8d3f01d35fa297a285331/help/docs/RELEASE_NOTES
https://raw.github.com/jethrocarr/amberdms-bs/master/help/docs/CHANGELOG