Описание
An authenticated malicious user could acquire the simple mail transfer protocol (SMTP) Password in cleartext format, despite it being protected and hidden behind asterisks. The attacker could then perform further attacks using the SMTP credentials.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:sauter-controls:ey-as525f001_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sauter-controls:ey-as525f001:-:*:*:*:*:*:*:*
EPSS
Процентиль: 9%
0.00034
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-319
Связанные уязвимости
CVSS3: 6.5
github
почти 3 года назад
An authenticated malicious user could acquire the simple mail transfer protocol (SMTP) Password in cleartext format, despite it being protected and hidden behind asterisks. The attacker could then perform further attacks using the SMTP credentials.
EPSS
Процентиль: 9%
0.00034
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-319