CVE-2024-3689 – Zhejiang Land Zongheng Network Technology O2OA information disclosure

https://notcve.org/view.php?id=CVE-2024-3689

12 Apr 2024 — A vulnerability classified as problematic has been found in Zhejiang Land Zongheng Network Technology O2OA up to 20240403. Affected is an unknown function of the file /x_portal_assemble_surface/jaxrs/portal/list?v=8.2.3-4-43f4fe3. The manipulation leads to information disclosure. It is possible to launch the attack remotely. • https://github.com/Echosssy/CVE • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •