Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The BreakingPoint Storm appliance before 3.0 requires cleartext credentials for establishing a session from a GUI administrative client, which allows remote attackers to obtain sensitive information by sniffing the network for XML documents.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
BreakingPoint Storm CTM 凭证泄露漏洞
Vulnerability Description
BreakingPoint Storm CTM是一款应用性能测试和安全测试产品。 BreakingPoint Storm CTM 3.0之前版本中存在漏洞,可被恶意攻击者利用泄露某些敏感信息。该漏洞源于Control Center GUI管理客户端传送明文凭证到服务器。攻击者可利用该漏洞通过如嗅探网络报文或中间人(MitM)攻击截获凭证。
CVSS Information
N/A
Vulnerability Type
N/A