Username enumeration in present in Tufin SecureTrack. It's affecting all versions of SecureTrack. The vendor has decided not to fix this vulnerability. Vendor's response: "This attack requires access to the internal network. If an attacker is part of the internal network, they do not require access to TOS to know the usernames".
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-02-09T04:45:53

Updated: 2024-08-04T12:18:18.312Z

Reserved: 2020-05-25T00:00:00

Link: CVE-2020-13461

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-02-09T05:15:13.270

Modified: 2024-11-21T05:01:18.730

Link: CVE-2020-13461

cve-icon Redhat

No data.