exploitDog

GHSA-jw2v-66vp-9x24

Опубликовано: 18 янв. 2022

Источник: github

Github: Не прошло ревью

Описание

In Stormshield SSO Agent 2.x before 2.1.1 and 3.x before 3.0.2, the cleartext user password and PSK are contained in the log file of the .exe installer.

In Stormshield SSO Agent 2.x before 2.1.1 and 3.x before 3.0.2, the cleartext user password and PSK are contained in the log file of the .exe installer.

Ссылки

EPSS

Процентиль: 19%

0.0006

Низкий

CVE ID

Дефекты

CWE-532

Связанные уязвимости

CVE-2022-22703

CVSS3: 5.5

nvd

около 4 лет назад

In Stormshield SSO Agent 2.x before 2.1.1 and 3.x before 3.0.2, the cleartext user password and PSK are contained in the log file of the .exe installer.

EPSS

Процентиль: 19%

0.0006

Низкий

CVE ID

Дефекты

CWE-532