CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
71.1%
Baramundi Management Suite 7.5 through 8.9 uses cleartext for (1) client-server communication and (2) data storage, which allows remote attackers to obtain sensitive information by sniffing the network, and allows context-dependent attackers to obtain sensitive information by reading a file.
Vendor | Product | Version | CPE |
---|---|---|---|
baramundi | management_suite | 7.5 | cpe:2.3:a:baramundi:management_suite:7.5:*:*:*:*:*:*:* |
baramundi | management_suite | 7.6 | cpe:2.3:a:baramundi:management_suite:7.6:*:*:*:*:*:*:* |
baramundi | management_suite | 8.0 | cpe:2.3:a:baramundi:management_suite:8.0:*:*:*:*:*:*:* |
baramundi | management_suite | 8.1 | cpe:2.3:a:baramundi:management_suite:8.1:*:*:*:*:*:*:* |
baramundi | management_suite | 8.2 | cpe:2.3:a:baramundi:management_suite:8.2:*:*:*:*:*:*:* |
baramundi | management_suite | 8.3 | cpe:2.3:a:baramundi:management_suite:8.3:*:*:*:*:*:*:* |
baramundi | management_suite | 8.5 | cpe:2.3:a:baramundi:management_suite:8.5:*:*:*:*:*:*:* |
baramundi | management_suite | 8.6 | cpe:2.3:a:baramundi:management_suite:8.6:*:*:*:*:*:*:* |
baramundi | management_suite | 8.7 | cpe:2.3:a:baramundi:management_suite:8.7:*:*:*:*:*:*:* |
baramundi | management_suite | 8.8 | cpe:2.3:a:baramundi:management_suite:8.8:*:*:*:*:*:*:* |