Encryption Vulnerability in ZTE ZXCLOUD GoldenData VAP Product Allows Sniffing of Unencrypted Account and Password

Encryption Vulnerability in ZTE ZXCLOUD GoldenData VAP Product Allows Sniffing of Unencrypted Account and Password

CVE-2019-3431 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

All versions up to V4.01.01.02 of ZTE ZXCLOUD GoldenData VAP product have encryption problems vulnerability. Attackers could sniff unencrypted account and password through the network for front-end system access.

Learn more about our Cloud Audit.