Cisco Mediator Framework 1.5.1 before 1.5.1.build.14-eng, 2.2 before 2.2.1.dev.1, and 3.0 before 3.0.9.release.1 on the Cisco Network Building Mediator NBM-2400 and NBM-4800 and the Richards-Zeta Mediator 2500 does not encrypt HTTP sessions from operator workstations, which allows remote attackers to discover Administrator credentials by sniffing the network, aka Bug ID CSCtb83631.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2010-05-27T19:00:00

Updated: 2024-08-07T00:52:19.457Z

Reserved: 2010-02-10T00:00:00

Link: CVE-2010-0598

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2010-05-27T19:30:01.437

Modified: 2024-11-21T01:12:32.830

Link: CVE-2010-0598

cve-icon Redhat

No data.