- Description
- Use of reversible password encryption algorithm allows attackers to decrypt passwords. Sensitive information can be easily unencrypted by the attacker, stolen credentials can be used for arbitrary actions to corrupt the system.
- Source
- security@progress.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- Severity
- HIGH
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:progress:loadmaster:*:*:*:*:ltsf:*:*:*",
"vulnerable": true,
"matchCriteriaId": "71C25CAF-73A9-4F9A-9914-ABCFB0C9D4BE",
"versionEndExcluding": "7.2.54.10",
"versionStartIncluding": "7.2.49.0"
},
{
"criteria": "cpe:2.3:a:progress:loadmaster:*:*:*:*:ga:*:*:*",
"vulnerable": true,
"matchCriteriaId": "651AEE76-E95B-4E43-86E6-190062B23FE7",
"versionEndExcluding": "7.2.59.4",
"versionStartIncluding": "7.2.55.0"
},
{
"criteria": "cpe:2.3:a:progress:loadmaster:7.2.48.11:*:*:*:lts:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2FC71B68-F870-4ECF-9655-6E64C7546C96"
}
],
"operator": "OR"
}
]
}
]