CVE-2018-5386

CVE-2018-5386: Some Navarino Infinity functions placed in the URL can bypass any authentication mechanism leading to an information leak

Vendor Navarino
Product Infinity
Weakness CWE-288
Published July 24, 2018
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

Some Navarino Infinity functions, up to version 2.2, placed in the URL can bypass any authentication mechanism leading to an information leak.

Key dates

02Disclosure timeline

July 24, 2018 CVE published
August 5, 2024 Record updated