CVE-2018-11338

HIGH

Intuit Lacerte < 2017 - Cleartext Transmission of Sensitive Information via SMB

Title source: llm

Description

Intuit Lacerte 2017 for Windows in a client/server environment transfers the entire customer list in cleartext over SMB, which allows attackers to (1) obtain sensitive information by sniffing the network or (2) conduct man-in-the-middle (MITM) attacks via unspecified vectors. The customer list contains each customer's full name, social security number (SSN), address, job title, phone number, Email address, spouse's phone/Email address, and other sensitive information. After the client software authenticates to the server database, the server sends the customer list. There is no need for further exploitation as all sensitive data is exposed. This vulnerability was validated on Intuit Lacerte 2017, however older versions of Lacerte may be vulnerable.

References (2)

Core 2

Core References

Third Party Advisory, URL Repurposed x_refsource_misc

https://corporateblue.com/your-taxes-are-being-leaked/

Various Sources x_refsource_misc

https://www.themikewylie.com/intuit-lacerte-vulnerability-and-data-exposure-cve-2018-11338-cve-2018-14833/

Scores

CVSS v3 7.5

EPSS 0.0086

EPSS Percentile 53.8%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-319

Status published

Products (1)

intuit/lacerte < 2017

Published Jul 31, 2018

Tracked Since Feb 18, 2026