Описание
The Data Camouflage (aka FairCom Standard Encryption) algorithm in FairCom c-treeACE does not ensure that a decryption key is needed for accessing database contents, which allows context-dependent attackers to read cleartext database records by copying a database to another system that has a certain default configuration.
Ссылки
- US Government Resource
- US Government Resource
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:faircom:c-treeace:-:*:*:*:*:*:*:*
EPSS
Процентиль: 43%
0.00205
Низкий
7.1 High
CVSS2
Дефекты
CWE-310
Связанные уязвимости
github
почти 4 года назад
The Data Camouflage (aka FairCom Standard Encryption) algorithm in FairCom c-treeACE does not ensure that a decryption key is needed for accessing database contents, which allows context-dependent attackers to read cleartext database records by copying a database to another system that has a certain default configuration.
EPSS
Процентиль: 43%
0.00205
Низкий
7.1 High
CVSS2
Дефекты
CWE-310