CVE-2019-15626

Severity CVSS v4.0:
Pending analysis
Type:
CWE-319 Cleartext Transmission of Sensitive Information
Publication date:
17/10/2019
Last modified:
24/08/2020

Description

The Deep Security Manager application (Versions 10.0, 11.0 and 12.0), when configured in a certain way, may transmit initial LDAP communication in clear text. This may result in confidentiality impact but does not impact integrity or availability.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:trendmicro:deep_security:10.0:*:*:*:*:*:*:*
cpe:2.3:a:trendmicro:deep_security:11.0:*:*:*:*:*:*:*
cpe:2.3:a:trendmicro:deep_security:12.0:*:*:*:*:*:*:*


References to Advisories, Solutions, and Tools