Primary

Context

Hammock Corporation AssetView and AssetView CLOUD Sensitive Information Disclosure Vulnerability

Vulnerability

A vulnerability exists in AssetView and AssetView CLOUD that allows remote, unauthenticated attackers to obtain sensitive information from data sent to the developer. This issue arises from a lack of authentication in certain communications, potentially leading to unauthorized access to confidential information.

Impact

Exploitation of this vulnerability could result in the unauthorized disclosure of sensitive information from the affected user's data to the developer.

Remediation

Users of AssetView should update to version 13.2.4.3408 or later. For AssetView CLOUD users, contact the developer's support group for guidance on updating.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.0

remediation

6.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.0

remediation

6.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Hammock Corporation AssetView and AssetView CLOUD Sensitive Information Disclosure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Hammock AssetView

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating