Vulnerability Details CVE-2020-13473
NCH Express Accounts 8.24 and earlier allows local users to discover the cleartext password by reading the configuration file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 6.4%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 2.1
References
- https://cvewalkthrough.com/cve-2020-13473-nch-account-clear-text-password-storage/
- https://tejaspingulkar.blogspot.com/2020/12/cve-2020-13473-nch-account-clear-text.html
- https://cvewalkthrough.com/cve-2020-13473-nch-account-clear-text-password-storage/
- https://tejaspingulkar.blogspot.com/2020/12/cve-2020-13473-nch-account-clear-text.html
Products affected by CVE-2020-13473
-
cpe:2.3:a:nchsoftware:express_accounts:-
-
cpe:2.3:a:nchsoftware:express_accounts:8.24