Insufficient Password Protection in Open CIT Attestation Database: Potential Information Disclosure Vulnerability

Insufficient Password Protection in Open CIT Attestation Database: Potential Information Disclosure Vulnerability

CVE-2019-11092 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Insufficient password protection in the attestation database for Open CIT may allow an authenticated user to potentially enable information disclosure via local access.

Learn more about our User Device Pen Test.