CVEbaza.plCWE DictionaryCWE-11
Common Weakness Enumeration

CWE-11

ASP.NET Misconfiguration: Creating Debug Binary

Category: VariantCVE: 2
Description

Debugging messages help attackers learn about the system and plan a form of attack.

Extended Description

ASP .NET applications can be configured to produce debug binaries. These binaries give detailed debugging messages and should not be used in production environments. Debug binaries are meant to be used in a development or testing environment and can pose a security risk if they are deployed to production.

CVE vulnerabilities with CWE-11 (2)
5.3
CVSS
MEDIUM
CVE-2024-48008

Dell RecoverPoint for Virtual Machines 6.0.x contains a OS Command Injection vulnerability. An Low privileged remote attacker could potentially exploit this vulnerability leading to information disclosure ,allowing of unintended actions like reading files that may contain sensitive information

pub. 2024-12-13
5.3
CVSS
MEDIUM
CVE-2021-35235

The ASP.NET debug feature is enabled by default in Kiwi Syslog Server 9.7.2 and previous versions. ASP.NET allows remote debugging of web applications, if configured to do so. Debug mode causes ASP.NET to compile applications with extra information. The information enables a debugger to closely monitor and control the execution of an application. If an attacker could successfully start a remote debugging session, this is likely to disclose sensitive information about the web application and supporting infrastructure that may be valuable in targeting SWI with malicious intent.

pub. 2021-10-27
Information
ID: CWE-11
Type: Variant
Vulnerabilities: 2
MITRE CWE ↗
← CWE Dictionary