PT-2019-5401 · Schneider Electric · Easergy Builder
Published
2019-08-21
·
Updated
2020-07-27
·
CVE-2020-7517
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Easergy Builder versions 1.4.7.2 and older
Description
The issue is related to the storage of sensitive information in cleartext. This could allow an attacker to obtain user credentials.
Recommendations
For Easergy Builder versions 1.4.7.2 and older, update to a version newer than 1.4.7.2 to resolve the issue.
Fix
Cleartext Storage of Sensitive Information
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Easergy Builder