Описание
WeFi 3.2.1.4.1, when diagnostic mode is enabled, stores (1) WEP, (2) WPA, and (3) WPA2 access-point keys in (a) ClientWeFiLog.dat, (b) ClientWeFiLog.bak, and possibly (c) a certain .inf file under %PROGRAMFILES%\WeFi\Users, and uses cleartext for the ClientWeFiLog files, which allows local users to obtain sensitive information by reading these files.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:wefi:wefi:3.2.1.4.1:*:*:*:*:*:*:*
EPSS
Процентиль: 21%
0.0007
Низкий
4.7 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
почти 4 года назад
WeFi 3.2.1.4.1, when diagnostic mode is enabled, stores (1) WEP, (2) WPA, and (3) WPA2 access-point keys in (a) ClientWeFiLog.dat, (b) ClientWeFiLog.bak, and possibly (c) a certain .inf file under %PROGRAMFILES%\WeFi\Users\, and uses cleartext for the ClientWeFiLog files, which allows local users to obtain sensitive information by reading these files.
EPSS
Процентиль: 21%
0.0007
Низкий
4.7 Medium
CVSS2
Дефекты
CWE-200