PrinterOn Enterprise 4.1.3 Local User Credential Disclosure

PrinterOn Enterprise 4.1.3 Local User Credential Disclosure

CVE-2018-10327 · LOW Severity

AV:L/AC:M/AU:N/C:P/I:N/A:N

PrinterOn Enterprise 4.1.3 stores the Active Directory bind credentials using base64 encoding, which allows local users to obtain credentials for a domain user by reading the cps_config.xml file.

Learn more about our Cis Benchmark Audit For Bind.