Pro-Bit Unauthenticated Access to Sensitive Directory Vulnerability
Vulnerability
A vulnerability in Pro-Bit versions prior to 1.77.4 allows unauthenticated attackers to access sensitive directories and their subdirectories. The exposed directory contained highly sensitive information, including plaintext user credentials, database connection strings, internal host details, encryption methods and keys, and encrypted service-user passwords. This information could potentially be used to compromise the system further.
Impact
Exploitation of this vulnerability could lead to unauthorized access to sensitive information, including user credentials and internal system details, which could be used to compromise the affected system.
Remediation
Users are advised to update to Pro-Bit version 1.77.4 or later, where this vulnerability has been patched.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.