Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2018-18466
HistoryMar 21, 2019 - 4:00 p.m.

Design/Logic Flaw

2019-03-2116:00:00
PRIOn knowledge base
www.prio-n.com
3

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

DISPUTED An issue was discovered in SecurEnvoy SecurAccess 9.3.502. When put in Debug mode and used for RDP connections, the application stores the emergency credentials in cleartext in the logs (present in the DEBUG folder) that can be accessed by anyone. NOTE: The vendor disputes this as a vulnerability since the disclosure of a local account password (actually an alpha numeric passcode) is achievable only when a custom registry key is added to the windows registry. This action requires administrator access and the registry key is only provided by support staff at securenvoy to troubleshoot customer issues.

CPENameOperatorVersion
securaccesseq9.3.502

Related

vulnrichment 1
cvelist 1
nvd 1
cve 1
vulnrichment
vulnrichment
CVE-2018-18466
2019-03-18 20:09:45
cvelist
cvelist
CVE-2018-18466
2019-03-18 20:09:45
nvd
nvd
CVE-2018-18466
2019-03-21 16:00:28
cve
cve
CVE-2018-18466
2019-03-21 16:00:28

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON
Related for PRION:CVE-2018-18466
vulnrichment1cvelist1nvd1cve1