CVE-2020-36876

UNKNOWN 0.0

ReQuest Serious Play F3 Media Server <= 7.0.3 Debug Log Disclosure2020

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

ReQuest Serious Play F3 Media Server versions 7.0.3.4968 (Pro), 7.0.2.4954, 6.5.2.4954, 6.4.2.4681, 6.3.2.4203, and 2.0.1.823 allows unauthenticated attackers to disclose the webserver's Python debug log file containing system information, credentials, paths, processes and command arguments running on the device. Attackers can access sensitive information by visiting the message_log page.

CWE	CWE-532
Vendor	request serious play llc
Product	request serious play pro
Published	Dec 5, 2025
Last Updated	Apr 7, 2026

Stay Ahead of the Next One

Get instant alerts for request serious play llc request serious play pro

Be the first to know when new unknown vulnerabilities affecting request serious play llc request serious play pro are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

ReQuest Serious Play LLC / ReQuest Serious Play Pro

7.0.3.4968

ReQuest Serious Play LLC / ReQuest Serious Play

7.0.2.4954 6.5.2.4954 6.4.2.4681 6.3.2.4203 2.0.1.823

References

NVD ↗ CVE.org ↗ EPSS Data ↗

exploit-db.com: https://www.exploit-db.com/exploits/48950 request.com: http://request.com/ zeroscience.mk: https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5600.php vulncheck.com: https://www.vulncheck.com/advisories/request-serious-play-f-media-server-debug-log-disclosure

Credits

Gjoko 'LiquidWorm' Krstic