PT-2019-15126 · Tomedo · Tomedo Server

Chris Hein

Published

2019-10-18

Updated

2021-07-21

CVE-2019-17393

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Tomedo Server version 1.7.3

Description The issue concerns the communication between the Customer's Tomedo Server and the Vendor Tomedo Server, which occurs over HTTP in cleartext. This makes it possible for unauthorized actors to intercept the communication. The use of basic authentication allows attackers to base64 decode the intercepted credentials, potentially revealing the username and password.

Recommendations For Tomedo Server version 1.7.3, consider disabling the use of basic authentication over HTTP until a secure alternative, such as HTTPS, can be implemented to encrypt the communication and protect the credentials. As a temporary workaround, restrict access to the Tomedo Server to minimize the risk of unauthorized interception.

Fix

Insufficiently Protected Credentials

Cleartext Transmission of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-522CWE-319

Related Identifiers

CVE-2019-17393

Affected Products

Tomedo Server

PT-2019-15126 · Tomedo · Tomedo Server

CVE-2019-17393

Weakness Enumeration

Related Identifiers

Affected Products

References · 4