H3-2022-0035
Unauthenticated Access to JavaMelody Monitoring Console
Category | SECURITY_MISCONFIGURATION |
Base Score | 7.5 |
Description
JavaMelody is used to monitor Java applications and if incorrectly configured sensitive information could be exposed.
Impact
Sensitive environment information and user session data may be leaked to attackers allowing for further exploitation.