Описание
Axway Secure Messenger before 6.5 Updated Release 7, as used in Axway Email Firewall, provides different responses to authentication requests depending on whether the user exists, which allows remote attackers to enumerate users via a series of requests.
Ссылки
Уязвимые конфигурации
Конфигурация 1Версия до 6.5.0 (включая)
Одно из
cpe:2.3:a:axway:email_firewall:-:*:*:*:*:*:*:*
cpe:2.3:a:axway:secure_messenger:*:*:*:*:*:*:*:*
cpe:2.3:a:axway:secure_messenger:6.3.2:*:*:*:*:*:*:*
EPSS
Процентиль: 57%
0.00348
Низкий
5 Medium
CVSS2
Дефекты
CWE-287
Связанные уязвимости
github
больше 3 лет назад
Axway Secure Messenger before 6.5 Updated Release 7, as used in Axway Email Firewall, provides different responses to authentication requests depending on whether the user exists, which allows remote attackers to enumerate users via a series of requests.
EPSS
Процентиль: 57%
0.00348
Низкий
5 Medium
CVSS2
Дефекты
CWE-287