Описание
Insufficiently Protected Credentials in the Crowdstrike connector can lead to Crowdstrike credentials being leaked. A malicious user can access cached credentials from a Crowdstrike connector in another space by creating and running a Crowdstrike connector in a space to which they have access.
EPSS
Процентиль: 14%
0.00046
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-522
Связанные уязвимости
CVSS3: 5.4
github
4 месяца назад
Insufficiently Protected Credentials in the Crowdstrike connector can lead to Crowdstrike credentials being leaked. A malicious user can access cached credentials from a Crowdstrike connector in another space by creating and running a Crowdstrike connector in a space to which they have access.
EPSS
Процентиль: 14%
0.00046
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-522