CVE-2020-36876
Published: Dec 5, 2025
Modified: Apr 7, 2026
Description
ReQuest Serious Play F3 Media Server versions 7.0.3.4968 (Pro), 7.0.2.4954, 6.5.2.4954, 6.4.2.4681, 6.3.2.4203, and 2.0.1.823 allows unauthenticated attackers to disclose the webserver's Python debug log file containing system information, credentials, paths, processes and command arguments running on the device. Attackers can access sensitive information by visiting the message_log page.
| Vendor | Product | Versions |
|---|---|---|
ReQuest Serious Play LLC | ReQuest Serious Play Pro | affected 7.0.3.4968 |
ReQuest Serious Play LLC | ReQuest Serious Play | affected 7.0.2.4954affected 6.5.2.4954affected 6.4.2.4681affected 6.3.2.4203affected 2.0.1.823 |
Weaknesses (CWE)
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now