1 results (0.006 seconds)

CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0

A password management issue exists where the Organization authentication username and password were stored in plaintext in log files. A locally authenticated attacker who is able to access these stored plaintext credentials can use them to login to the Organization. Affected products are: Juniper Networks Service Insight versions from 15.1R1, prior to 18.1R1. Service Now versions from 15.1R1, prior to 18.1R1. Se presenta un problema de administración de contraseña donde el nombre de usuario y la contraseña de autenticación de la Organización fueron almacenadas en texto plano en los archivos de registro. • http://www.securityfocus.com/bid/107885 https://kb.juniper.net/JSA10921 https://kb.juniper.net/KB27572 • CWE-256: Plaintext Storage of a Password CWE-522: Insufficiently Protected Credentials CWE-532: Insertion of Sensitive Information into Log File •