Security Advisory

PACTware Software

Risk Information

Possible Threat

CVE ID

CVE-2020-9403

CVE-2020-9404

Vunerability Type

Storing Passwords in a Recoverable Format

Incorrect Permission Assignment for Critical Resource

CVSS3 Score

5.5

7.1

CVSSv3 Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

PACTware: v4.1SP4 (4.1.0.50) and v5.0 (5.0.4.20)

PACTware has not yet produced a patch to address this issue.

03/18/2020