CVE-2021-45491
MEDIUM3CX < 2022-03-17 - Cleartext Storage of Sensitive Information
Title source: llmDescription
3CX System through 2022-03-17 stores cleartext passwords in a database.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_misc
https://www.3cx.com/community/forums/posts-articles-news/
Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/166386/3CX-Phone-System-Cleartext-Passwords.html
Scores
CVSS v3
6.5
EPSS
0.0079
EPSS Percentile
51.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-312
Status
published
Products (1)
3cx/3cx
< 2022-03-17
Published
Mar 28, 2022
Tracked Since
Feb 18, 2026