Описание
Automox Agent prior to version 31 uses an insufficiently protected S3 bucket endpoint for storing sensitive files, which could be brute-forced by an attacker to subvert an organization's security program. The issue has since been fixed in version 31 of the Automox Agent.
Ссылки
- Vendor Advisory
- Third Party Advisory
- Vendor Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 31 (исключая)
cpe:2.3:a:automox:automox:*:*:*:*:*:*:*:*
EPSS
Процентиль: 42%
0.00203
Низкий
3.7 Low
CVSS3
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-284
CWE-330
Связанные уязвимости
CVSS3: 5.3
github
больше 3 лет назад
Automox Agent prior to version 31 uses an insufficiently protected S3 bucket endpoint for storing sensitive files, which could be brute-forced by an attacker to subvert an organization's security program. The issue has since been fixed in version 31 of the Automox Agent.
EPSS
Процентиль: 42%
0.00203
Низкий
3.7 Low
CVSS3
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-284
CWE-330