Cleartext Password Exposure in Squash TM Administration Panel

Cleartext Password Exposure in Squash TM Administration Panel

CVE-2018-16987 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

Squash TM through 1.18.0 presents the cleartext passwords of external services in the administration panel, as demonstrated by a ta-server-password field in the HTML source code.

Learn more about our Cis Benchmark Audit For Server Software.