High severity8.8NVD Advisory· Published Apr 22, 2018· Updated Jun 17, 2026
CVE-2018-10286
CVE-2018-10286
Description
The Ericsson-LG iPECS NMS A.1Ac web application discloses sensitive information such as the NMS admin credentials and the PostgreSQL database credentials to logged-in users via the responses to certain HTTP POST requests. In order to be able to see the credentials in cleartext, an attacker needs to be authenticated.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: = A.1Ac
Patches
Vulnerability mechanics
References
2- gist.github.com/berkgoksel/fde102503c457c0344e2e53b7971437anvdThird Party Advisory
- www.exploit-db.com/exploits/44515/nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.