A CWE-1269 âProduct Released in Non-Release Configurationâ vulnerability in the Django web framework used by the web application (due to the âdebugâ configuration parameter set to âTrueâ) allows a remote unauthenticated attacker to access critical information and have other unspecified impacts to the confidentiality, integrity, and availability of the application. This issue affects: AiLux imx6 bundle below version imx6_1.0.7-2.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NAilux Imx6
APPAilux< 1.0.7-2
Related vulnerabilities
A CWE-798 âUse of Hard-coded Credentialsâ vulnerability in the MariaDB database of the web application allows ...
A CWE-122 âHeap-based Buffer Overflowâ vulnerability in the âlogger_genericâ function of the âAx_rtuâ binary a...
A CWE-184 âIncomplete List of Disallowed Inputsâ vulnerability in the embedded Chromium browser (concerning th...
A CWE-434 âUnrestricted Upload of File with Dangerous Typeâ vulnerability in the âfile_configurationâ function...
A CWE-552 âFiles or Directories Accessible to External Partiesâ vulnerability in the embedded Chromium browser...