Username enumeration in present in Tufin SecureTrack. It's affecting all versions of SecureTrack. The vendor has decided not to fix this vulnerability. Vendor's response: "This attack requires access to the internal network. If an attacker is part of the internal network, they do not require access to TOS to know the usernames".
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-02-09T04:45:53
Updated: 2024-08-04T12:18:18.312Z
Reserved: 2020-05-25T00:00:00
Link: CVE-2020-13461
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-02-09T05:15:13.270
Modified: 2024-11-21T05:01:18.730
Link: CVE-2020-13461
Redhat
No data.