IMail stores usernames and passwords in cleartext in a cookie, which allows remote attackers to obtain sensitive information.
Threat-Mapped Scoring
Score: 3.0
Priority: P2 - Serious (High)
-
S1 – Steal Customer Account Information
EPSS
Score: 0.01005
Percentile:
0.76081
CVSS Scoring
CVSS v3.1 Score: 7.5
Severity: HIGH
Mapped CWE(s)
-
CWE-312
: Cleartext Storage of Sensitive Information
All CAPEC(s)
-
CAPEC-37: Retrieve Embedded Sensitive Data
CAPEC(s) with Mapped TTPs
-
CAPEC-37: Retrieve Embedded Sensitive Data
Mapped TTPs:
Mapped ATT&CK TTPs
-
T1005
: Data from Local System
Kill Chain: collection
-
T1552.004
: Private Keys
Kill Chain: credential-access
Malware
APTs Threat Group Associations
Campaigns
- Operation Wocao
- SolarWinds Compromise
- Operation CuckooBees
- CostaRicto
- Operation Honeybee
- Operation Dream Job
- C0015
- Frankenstein
- Night Dragon
- Operation MidnightEclipse
- C0017
- Cutting Edge
- C0026
Affected Products
- cpe:2.3:a:ipswitch:imail:2006:*:*:*:*:*:*:*
← Back to Home