Описание
BigFix deployments that have installed the Notification Service on Windows are susceptible to disclosing SMTP BigFix operator's sensitive data in clear text. Operators who use Notification Service related content from BES Support are at risk of leaving their SMTP sensitive data exposed.
Уязвимые конфигурации
Конфигурация 1Версия до 3.2.1 (включая)
Одновременно
cpe:2.3:a:hcltech:bigfix_server_automation:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 37%
0.0016
Низкий
7.7 High
CVSS3
7.5 High
CVSS3
Дефекты
CWE-311
CWE-311
Связанные уязвимости
CVSS3: 7.5
github
около 3 лет назад
BigFix deployments that have installed the Notification Service on Windows are susceptible to disclosing SMTP BigFix operator's sensitive data in clear text. Operators who use Notification Service related content from BES Support are at risk of leaving their SMTP sensitive data exposed.
EPSS
Процентиль: 37%
0.0016
Низкий
7.7 High
CVSS3
7.5 High
CVSS3
Дефекты
CWE-311
CWE-311