Cleartext Password Exposure in Squash TM Administration Panel
CVE-2018-16987 · MEDIUM Severity
AV:N/AC:L/AU:S/C:P/I:N/A:N
Squash TM through 1.18.0 presents the cleartext passwords of external services in the administration panel, as demonstrated by a ta-server-password field in the HTML source code.
Learn more about our Cis Benchmark Audit For Server Software.