Skip to main content
Security Advisory

PACTware Software

End users should monitor for access to the registry keys noted in this advisory: Monitoring for these registry keys may be performed with a local monitoring suite such as SYSMON.

Risk Information

affected product:

PACTware: v4.1SP4 (4.1.0.50) and v5.0 (5.0.4.20)

Possible Threat

CVE ID

CVE-2020-9403

CVE-2020-9403

ID

CVE-2020-9403

Source

Dragos

Skill Level

N/A

CVSSV3 BASE / TEMPORAL SCORE

N/A

CVSSV3 vector

N/A

Affecting

  • PACTware: v4.1SP4 (4.1.0.50) and v5.0 (5.0.4.20)
  • Vulnerability Type

    Storing Passwords in a Recoverable Format

    Incorrect Permission Assignment for Critical Resource

    Disclosure Timeline

    03/18/2020 - Dragos discloses issue