Описание
Symantec Altiris Deployment Solution 6.x before 6.9.355 SP1 stores the Application Identity Account password in memory in cleartext, which allows local users to gain privileges and modify clients of the Deployment Solution Server.
Ссылки
- Broken LinkVendor Advisory
- Broken LinkPatchVendor Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkPatchVendor Advisory
- Third Party AdvisoryVDB Entry
- Broken LinkVendor Advisory
- Broken LinkPatchVendor Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkPatchVendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 6.9.355 (исключая)
Одно из
cpe:2.3:a:symantec:altiris_deployment_solution:*:*:*:*:*:*:*:*
cpe:2.3:a:symantec:altiris_deployment_solution:6.9.355:-:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00043
Низкий
7.8 High
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-312
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
Symantec Altiris Deployment Solution 6.x before 6.9.355 SP1 stores the Application Identity Account password in memory in cleartext, which allows local users to gain privileges and modify clients of the Deployment Solution Server.
EPSS
Процентиль: 13%
0.00043
Низкий
7.8 High
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-312