Critical severity9.8NVD Advisory· Published Apr 28, 2021· Updated Jun 17, 2026
CVE-2020-21994
CVE-2020-21994
Description
AVE DOMINAplus <=1.10.x suffers from clear-text credentials disclosure vulnerability that allows an unauthenticated attacker to issue a request to an unprotected directory that hosts an XML file '/xml/authClients.xml' and obtain administrative login information that allows for a successful authentication bypass attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- AVE/DOMINAplusdescription
- Range: <=1.10.x
Patches
Vulnerability mechanics
References
3- www.exploit-db.com/exploits/47819nvdExploitThird Party AdvisoryVDB Entry
- www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5550.phpnvdExploitThird Party Advisory
- cwe.mitre.org/data/definitions/522.htmlnvdTechnical Description
News mentions
0No linked articles in our index yet.