exploitDog

CVE-2010-3245

Опубликовано: 07 сент. 2010

Источник: nvd

CVSS2: 2.1

EPSS Низкий

Описание

The automated-backup functionality in Blackboard Transact Suite (formerly Blackboard Commerce Suite) stores the (1) database username and (2) database password in cleartext in (a) script and (b) batch (.bat) files, which allows local users to obtain sensitive information by reading a file.

Ссылки

http://www.kb.cert.org/vuls/id/204055
US Government Resource
http://www.kb.cert.org/vuls/id/MAPG-86YPVM
US Government Resource
http://www.kb.cert.org/vuls/id/204055
US Government Resource
http://www.kb.cert.org/vuls/id/MAPG-86YPVM
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:blackboard:transact_suite:-:*:*:*:*:*:*:*

EPSS

Процентиль: 43%

0.00206

Низкий

2.1 Low

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-8xf9-q78r-w56f

github

больше 3 лет назад

The automated-backup functionality in Blackboard Transact Suite (formerly Blackboard Commerce Suite) stores the (1) database username and (2) database password in cleartext in (a) script and (b) batch (.bat) files, which allows local users to obtain sensitive information by reading a file.

EPSS

Процентиль: 43%

0.00206

Низкий

2.1 Low

CVSS2

Дефекты

CWE-200