Clear Text Transmission of Initial LDAP Communication in Deep Security Manager Application

Clear Text Transmission of Initial LDAP Communication in Deep Security Manager Application

CVE-2019-15626 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

The Deep Security Manager application (Versions 10.0, 11.0 and 12.0), when configured in a certain way, may transmit initial LDAP communication in clear text. This may result in confidentiality impact but does not impact integrity or availability.

Learn more about our Web Application Penetration Testing UK.