Breakingpointsystems » Breakingpoint Storm Appliance : Security Vulnerabilities, CVEs,
The BreakingPoint Storm appliance before 3.0 requires cleartext credentials for establishing a session from a GUI administrative client, which allows remote attackers to obtain sensitive information by sniffing the network for XML documents.
Max CVSS
5.0
EPSS Score
0.35%
Published
2012-08-12
Updated
2012-08-13
The administrative interface in the embedded web server on the BreakingPoint Storm appliance before 3.0 does not require authentication for the gwt/BugReport script, which allows remote attackers to obtain sensitive information by downloading a .tgz file.
Max CVSS
5.0
EPSS Score
0.37%
Published
2012-08-12
Updated
2012-08-13
2 vulnerabilities found