CVE-2014-2356 Information

Description

Innominate mGuard before 7.6.4 and 8.x before 8.0.3 does not require authentication for snapshot downloads which allows remote attackers to obtain sensitive information via a crafted HTTPS request.

Reference

http://ics-cert.us-cert.gov/advisories/ICSA-14-189-02