Insufficient Protection of Stored Credentials in Robotronic RunAsSpc 3.7.0.0

Insufficient Protection of Stored Credentials in Robotronic RunAsSpc 3.7.0.0

CVE-2019-10239 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

Robotronic RunAsSpc 3.7.0.0 protects stored credentials insufficiently, which allows locally authenticated attackers (under the same user context) to obtain cleartext credentials of the stored account.

Learn more about our User Device Pen Test.