Vulnerabilities > CVE-2004-2723 - Credentials Management vulnerability in Nessus Nessuswx 1.4.4

047910
CVSS 2.1 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
local
low complexity
nessus
CWE-255

Summary

NessusWX 1.4.4 stores account passwords in plaintext in .session files, which allows local users to obtain passwords.

Vulnerable Configurations

Part Description Count
Application
Nessus
1

Common Weakness Enumeration (CWE)