Описание
Ingate Firewall before 4.6.0 and SIParator before 4.6.0 use cleartext storage for passwords of "administrators with less privileges," which might allow attackers to read these passwords via unknown vectors.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 4.5.2 (включая)Версия до 4.5.2 (включая)
Одно из
cpe:2.3:h:ingate:ingate_firewall:*:*:*:*:*:*:*:*
cpe:2.3:h:ingate:ingate_siparator:*:*:*:*:*:*:*:*
EPSS
Процентиль: 56%
0.00335
Низкий
5 Medium
CVSS2
Дефекты
CWE-255
Связанные уязвимости
github
почти 4 года назад
Ingate Firewall before 4.6.0 and SIParator before 4.6.0 use cleartext storage for passwords of "administrators with less privileges," which might allow attackers to read these passwords via unknown vectors.
EPSS
Процентиль: 56%
0.00335
Низкий
5 Medium
CVSS2
Дефекты
CWE-255