Github.Com/Kolide/Fleet is vulnerable to man-in-the-middle (MitM). LOGIN authentication is not done using secure TLS connection with SMTP server, leaking login credentials to a man-in-the-middle attacker.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/kolide/fleet | eq | HEAD | |
github.com/kolide/fleet | le | 2.1.1 |