Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Pega Infinity Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2017-11356 - Vulnerability Database
Pega Infinity

Pega Infinity Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2017-11356

Medium
Reference: CVE-2017-11356
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2017-11356
Title: Pega Infinity Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

The application distribution export functionality in PEGA Platform 7.2 ML0 and earlier allows remote authenticated users with certain privileges to obtain sensitive configuration information by leveraging a missing access control.