Lucene search
K

4 matches found

Cvelist
Cvelist
added 2024/09/27 3:56 p.m.23 views

CVE-2024-45744 TopQuadrant TopBraid EDG password manager stores external credentials insecurely

TopQuadrant TopBraid EDG stores external credentials insecurely. An authenticated attacker with file system access can read edg-setup.properites and obtain the secret to decrypt external passwords stored in edg-vault.properties. An authenticated attacker could gain file system access using a...

3CVSS0.00222EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/09/27 3:56 p.m.16 views

CVE-2024-45744 TopQuadrant TopBraid EDG password manager stores external credentials insecurely

TopQuadrant TopBraid EDG stores external credentials insecurely. An authenticated attacker with file system access can read edg-setup.properites and obtain the secret to decrypt external passwords stored in edg-vault.properties. An authenticated attacker could gain file system access using a...

3CVSS4.2AI score0.00222EPSS
Exploits0References5
CVE
CVE
added 2024/09/27 3:56 p.m.55 views

CVE-2024-45744

TopQuadrant TopBraid EDG stores external credentials in edg-vault.properties and reads secrets from edg-setup.properties, enabling an authenticated attacker with file-system access to decrypt external passwords. Affected from at least v7.1.3; attacker access may be gained via another vulnerabilit...

4.3CVSS4.2AI score0.00222EPSS
Exploits0References5Affected Software1
ICS
ICS
added 2024/09/10 4:3 p.m.8 views

TopQuadrant TopBraid EDG Insecure External Password Storage and XXE Vulnerabilities

RISK EVALUATION TopQuadrant TopBraid EDG stores credentials for external services insecurely and processes untrusted XML entities. An authenticated attacker could obtain credentials for remote services, read local files, or access URLs. 2. RECOMMENDED PRACTICES Upgrade to TopQuadrant TopBraid...

5CVSS6.9AI score0.00278EPSS
Exploits0References1
Rows per page
Query Builder