Vulnerabilities (CVE)

Filtered by vendor Breakingpointsystems Subscribe
Filtered by product Breakingpoint Storm Appliance
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-2964 1 Breakingpointsystems 2 Breakingpoint Storm Appliance, Breakingpoint Storm Appliance Ctm 2024-11-21 5.0 MEDIUM N/A
The BreakingPoint Storm appliance before 3.0 requires cleartext credentials for establishing a session from a GUI administrative client, which allows remote attackers to obtain sensitive information by sniffing the network for XML documents.
CVE-2012-2963 1 Breakingpointsystems 2 Breakingpoint Storm Appliance, Breakingpoint Storm Appliance Ctm 2024-11-21 5.0 MEDIUM N/A
The administrative interface in the embedded web server on the BreakingPoint Storm appliance before 3.0 does not require authentication for the gwt/BugReport script, which allows remote attackers to obtain sensitive information by downloading a .tgz file.