CVE-2018-16498

2021-05-2618:45:50

CWE-312

hackerone

www.cve.org

versa director

backup files

credentials

configuration files

snmp

ssl

trust keystores

AI Score

5.6

Confidence

High

EPSS

Percentile

12.6%

JSON

In Versa Director, the unencrypted backup files stored on the Versa deployment contain credentials stored within configuration files. These credentials are for various application components such as SNMP, and SSL and Trust keystores.

CNA Affected

[
  {
    "product": "Versa Director",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Fixed Versions: 16.1R2S11, 20.2.2, 21.1.1, 21.2.1"
      }
    ]
  }
]

References

hackerone.com/reports/1168195