Описание
Ambiguous wording in the web interface of the ctrlX OS setup mechanism could lead the user to believe that the backup file is encrypted when a password is set. However, only the private key - if available in the backup - is encrypted, while the backup file itself remains unencrypted.
EPSS
Процентиль: 2%
0.00015
Низкий
7.1 High
CVSS3
Дефекты
CWE-311
Связанные уязвимости
CVSS3: 7.1
github
6 месяцев назад
Ambiguous wording in the web interface of the ctrlX OS setup mechanism could lead the user to believe that the backup file is encrypted when a password is set. However, only the private key - if available in the backup - is encrypted, while the backup file itself remains unencrypted.
EPSS
Процентиль: 2%
0.00015
Низкий
7.1 High
CVSS3
Дефекты
CWE-311