Description

A core dump consists of the recorded state of the working memory of a computer program at a specific time, generally when the program has terminated abnormally (crashed). Core dumps are often used to assist in diagnosing and debugging errors in computer programs.

A core dump file was found in this directory. The content of core dump files are highly sensitive as they contain the extact contents of the working memory including credentials, user data and so on.

Remediation

It's recommended to configure the server not to create core dumps or to create the files in a directory that is not publicly accessible.

References

Core dump

Related Vulnerabilities

wp superb Slideshow Information Disclosure (2.4)

WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5730)

WP Activity Log Information Disclosure (3.1.1)

WebLogic admin console weak credentials

YOURLS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3824)

Severity

High

Classification

CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Tags

Configuration Information Disclosure