Описание
BestCrypt BCWipe 1.0.7 and 2.0 through 2.35.1 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.
Ссылки
- Product
- Broken LinkVendor Advisory
- Broken Link
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkVendor Advisory
- Product
- Broken LinkVendor Advisory
- Broken Link
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 2.0 (включая) до 2.35.1 (включая)
Одно из
cpe:2.3:a:jetico:bcwipe:*:*:*:*:*:*:*:*
cpe:2.3:a:jetico:bcwipe:1.0.7:*:*:*:*:*:*:*
EPSS
Процентиль: 71%
0.00692
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-459
Связанные уязвимости
CVSS3: 7.5
github
почти 4 года назад
BestCrypt BCWipe 1.0.7 and 2.0 through 2.35.1 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.
EPSS
Процентиль: 71%
0.00692
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-459