Skip to main content

Transitmaster

1 CVEs product

Monthly

CVE-2017-14943 HIGH This Week

Trapeze TransitMaster is vulnerable to information disclosure (emails / hashed passwords) via a modified userID field in JSON data to ManageSubscriber.aspx/GetSubscriber. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Transitmaster
NVD
CVSS 3.0
7.5
EPSS
0.3%
EPSS 0% CVSS 7.5
HIGH This Week

Trapeze TransitMaster is vulnerable to information disclosure (emails / hashed passwords) via a modified userID field in JSON data to ManageSubscriber.aspx/GetSubscriber. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Transitmaster
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy