Sensitive Information Exposure in Automox Agent Prior to Version 31

Sensitive Information Exposure in Automox Agent Prior to Version 31

CVE-2021-26908 · LOW Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Automox Agent prior to version 31 logs potentially sensitive information in local log files, which could be used by a locally-authenticated attacker to subvert an organization's security program. The issue has since been fixed in version 31 of the Automox Agent.

Learn more about our Web Application Penetration Testing UK.