CVE-2019-15626
Severity CVSS v4.0:
Pending analysis
Type:
CWE-319
Cleartext Transmission of Sensitive Information
Publication date:
17/10/2019
Last modified:
24/08/2020
Description
The Deep Security Manager application (Versions 10.0, 11.0 and 12.0), when configured in a certain way, may transmit initial LDAP communication in clear text. This may result in confidentiality impact but does not impact integrity or availability.
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH
Base Score 2.0
4.30
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:trendmicro:deep_security:10.0:*:*:*:*:*:*:* | ||
cpe:2.3:a:trendmicro:deep_security:11.0:*:*:*:*:*:*:* | ||
cpe:2.3:a:trendmicro:deep_security:12.0:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page