CVE-2019-8932

HIGH

Rdbrck Shift < 3.4.3 - Insufficiently Protected Credentials

Title source: rule

Description

Redbrick Shift through 3.4.3 allows an attacker to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.

References (1)

Scores

CVSS v3 7.5
EPSS 0.0034
EPSS Percentile 56.4%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Classification

CWE
CWE-522
Status published

Affected Products (1)

rdbrck/shift < 3.4.3

Timeline

Published Jul 17, 2019
Tracked Since Feb 18, 2026