CVE-2019-15023

High

A security vulnerability exists in Zingbox Inspector versions 1.294 and earlier, that results in passwords for 3rd party integrations being…

palo_alto·CWE-312·Published 2019-10-09

CVSS

7.5

EPSS

0.01

KEV

Exploits

cve.orgen

184 chars

A security vulnerability exists in Zingbox Inspector versions 1.294 and earlier, that results in passwords for 3rd party integrations being stored in cleartext in device configuration.

NVDen

184 chars

A security vulnerability exists in Zingbox Inspector versions 1.294 and earlier, that results in passwords for 3rd party integrations being stored in cleartext in device configuration.

Se presenta una vulnerabilidad de seguridad en Zingbox Inspector versiones 1.294 y anteriores, que resulta en que las contraseñas para integraciones de terceros son almacenadas en texto sin cifrar en la configuración del dispositivo.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.0	10.0	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N
3.1	Primary	NVD	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N