// For flags

CVE-2007-5439

 

Severity Score

5.0
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

CA (formerly Computer Associates) eTrust ITM (Threat Manager) 8.1 stores sensitive user information in log files with predictable names, which allows remote attackers to obtain this information via unspecified vectors.

CA (anteriormente (Computer Associates) eTrust ITM (Threat Manager) 8.1 almacena informaciĆ³n de usuario sensible en archivos de registro con nombres predecibles, lo cual permite a atacantes remotos obtener esta informaciĆ³n mediante vectores no especificados.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2007-10-12 CVE Reserved
  • 2007-10-13 CVE Published
  • 2024-08-07 CVE Updated
  • 2024-08-16 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
  • CWE-264: Permissions, Privileges, and Access Controls
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Broadcom
Search vendor "Broadcom"
 Etrust Integrated Threat Management
Search vendor "Broadcom" for product "Etrust Integrated Threat Management"
 8.1
Search vendor "Broadcom" for product "Etrust Integrated Threat Management" and version "8.1"
-
Affected