daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Enhancement: vulnerabilities/other/watchguard-credentials-disclosure.yaml by mp

patch-1
MostInterestingBotInTheWorld 2022-06-03 09:58:45 -04:00
parent ec4c05e431
commit d3453a66f1
1 changed files with 7 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
vulnerabilities/other/watchguard-credentials-disclosure.yaml
View File

@ -4,11 +4,14 @@ info:
name: WatchGuard Fireware AD Helper Component - Credentials Disclosure
author: gy741
severity: critical
description: A credential-disclosure vulnerability in the AD Helper component of the WatchGuard Fireware Threat Detection and Response (TDR) service, which allows unauthenticated attackers to gain Active Directory
credentials for a Windows domain in plaintext.
description: WatchGuard Fireware Threat Detection and Response (TDR) service contains a credential-disclosure vulnerability in the AD Helper component that allows unauthenticated attackers to gain Active Directory credentials for a Windows domain in plaintext.
reference:
- https://www.exploit-db.com/exploits/48203
- https://www.watchguard.com/wgrd-blog/tdr-ad-helper-credential-disclosure-vulnerability
classification:
cvss-metrics: CVSS:10.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
cvss-score: 10.0
cwe-id: CWE-288
tags: watchguard,disclosure
requests:
@ -30,3 +33,5 @@ requests:
- type: status
status:
- 200
# Enhanced by mp on 2022/06/03