Skip to main content

Lacerte

1 CVEs product

Monthly

CVE-2018-11338 HIGH This Week

Intuit Lacerte 2017 for Windows in a client/server environment transfers the entire customer list in cleartext over SMB, which allows attackers to (1) obtain sensitive information by sniffing the. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Lacerte
NVD
CVSS 3.0
7.5
EPSS
0.9%
EPSS 1% CVSS 7.5
HIGH This Week

Intuit Lacerte 2017 for Windows in a client/server environment transfers the entire customer list in cleartext over SMB, which allows attackers to (1) obtain sensitive information by sniffing the. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Lacerte
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy