7.2
CVE-2007-1068
- EPSS 0.09%
- Veröffentlicht 22.02.2007 01:28:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
The (1) TTLS CHAP, (2) TTLS MSCHAP, (3) TTLS MSCHAPv2, (4) TTLS PAP, (5) MD5, (6) GTC, (7) LEAP, (8) PEAP MSCHAPv2, (9) PEAP GTC, and (10) FAST authentication methods in Cisco Secure Services Client (CSSC) 4.x, Trust Agent 1.x and 2.x, Cisco Security Agent (CSA) 5.0 and 5.1 (when a vulnerable Trust Agent has been deployed), and the Meetinghouse AEGIS SecureConnect Client store transmitted authentication credentials in plaintext log files, which allows local users to obtain sensitive information by reading these files, aka CSCsg34423.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cisco ≫ Secure Services Client Version4.0
Cisco ≫ Secure Services Client Version4.0.5
Cisco ≫ Secure Services Client Version4.0.51
Cisco ≫ Security Agent Version5.0
Cisco ≫ Security Agent Version5.1
Cisco ≫ Trust Agent Version1.0
Cisco ≫ Trust Agent Version2.0
Cisco ≫ Trust Agent Version2.0.1
Cisco ≫ Trust Agent Version2.1
Meetinghouse ≫ Aegis Secureconnect Client Versionwindows_platform
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.09% | 0.266 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 3.9 | 10 |
AV:L/AC:L/Au:N/C:C/I:C/A:C
|