Описание
Avaya VPNRemote before 4.2.33 stores credentials in cleartext in process memory, which allows attackers to obtain the VPN user's credentials.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:avaya:vpnremote:4.2.23:*:*:*:*:*:*:*
cpe:2.3:a:avaya:vpnremote:4.2.24:*:*:*:*:*:*:*
cpe:2.3:a:avaya:vpnremote:4.2.26:*:*:*:*:*:*:*
cpe:2.3:a:avaya:vpnremote:4.2.29:*:*:*:*:*:*:*
cpe:2.3:a:avaya:vpnremote:4.2.30:*:*:*:*:*:*:*
cpe:2.3:a:avaya:vpnremote:4.2.32:*:*:*:*:*:*:*
EPSS
Процентиль: 22%
0.00072
Низкий
2.1 Low
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Avaya VPNRemote before 4.2.33 stores credentials in cleartext in process memory, which allows attackers to obtain the VPN user's credentials.
EPSS
Процентиль: 22%
0.00072
Низкий
2.1 Low
CVSS2
Дефекты
NVD-CWE-Other