2 matches found
CVE-2021-3131
The Web server in 1C:Enterprise 8 before 8.3.17.1851 sends base64 encoded credentials in the creds URL parameter...
CVE-2021-3131
The CVE concerns the Web server in 1C:Enterprise 8, prior to version 8.3.17.1851, which transmits credentials in base64 via the creds URL parameter. The issue is confirmed by multiple connected sources, including PT-2021-19235, which specifies affected versions as 1C:Enterprise 8 before 8.3.17.18...