NETSAS Enigma NMS 65.0.0 and prior utilises basic authentication over HTTP for enforcing access control to the web application. The use of weak authentication transmitted over cleartext protocols can allow an attacker to steal username and password combinations by intercepting authentication traffic in transit.
References
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-03-19T17:56:42

Updated: 2024-08-05T01:03:32.758Z

Reserved: 2019-09-06T00:00:00

Link: CVE-2019-16067

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-03-19T18:15:14.227

Modified: 2024-11-21T04:29:59.563

Link: CVE-2019-16067

cve-icon Redhat

No data.