PT-2020-10351 · Treasuryxpress · Treasuryxpress

Published

2020-08-20

Updated

2021-07-21

CVE-2019-20150

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions TreasuryXpress version 19191105

Description The issue allows a logged-in user to discover saved credentials, which are hidden by the UI. An attacker can exploit this by using the application's editor to change the expected SFTP Host IP to a malicious host and then using the Check Connectivity option. This forces the application to send the saved SSH/SFTP credentials to the malicious host.

Recommendations For TreasuryXpress version 19191105, as a temporary workaround, consider restricting access to the editor functionality that allows changing the SFTP Host IP, and avoid using the Check Connectivity option with untrusted hosts until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2019-20150

Affected Products

Treasuryxpress

PT-2020-10351 · Treasuryxpress · Treasuryxpress

CVE-2019-20150

Related Identifiers

Affected Products

References · 3