Medium severity4.9NVD Advisory· Published Apr 18, 2019· Updated Jun 17, 2026
CVE-2018-17287
CVE-2018-17287
Description
In Kofax Front Office Server Administration Console 4.1.1.11.0.5212, some fields, such as passwords, are obfuscated in the front-end, but the cleartext value can be exfiltrated by using the back-end "download" feature, as demonstrated by an mfp.password downloadsettingvalue operation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: 4.1.1.11.0.5212
Patches
Vulnerability mechanics
References
1- github.com/DrunkenShells/Disclosures/tree/master/CVE-2018-17287-Information%20Disclosure-KofaxnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.