Vulnerability Details CVE-2014-4861
The Remote Desktop Launcher in Thycotic Secret Server before 8.6.000010 does not properly cleanup a temporary file that contains an encrypted password once a session has ended.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.2%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2014-4861
-
cpe:2.3:a:thycotic:secret_server:7.5.000000
-
cpe:2.3:a:thycotic:secret_server:8.0.000004
-
cpe:2.3:a:thycotic:secret_server:8.0.000005
-
cpe:2.3:a:thycotic:secret_server:8.1.000000
-
cpe:2.3:a:thycotic:secret_server:8.1.000011
-
cpe:2.3:a:thycotic:secret_server:8.1.000014
-
cpe:2.3:a:thycotic:secret_server:8.2.000000
-
cpe:2.3:a:thycotic:secret_server:8.2.000001
-
cpe:2.3:a:thycotic:secret_server:8.3.000000
-
cpe:2.3:a:thycotic:secret_server:8.3.000001
-
cpe:2.3:a:thycotic:secret_server:8.3.000002
-
cpe:2.3:a:thycotic:secret_server:8.3.000019
-
cpe:2.3:a:thycotic:secret_server:8.4.000000
-
cpe:2.3:a:thycotic:secret_server:8.4.000004
-
cpe:2.3:a:thycotic:secret_server:8.5.000000
-
cpe:2.3:a:thycotic:secret_server:8.6.000000
-
cpe:2.3:a:thycotic:secret_server:8.6.000009