Vulnerabilities > CVE-2019-12911 - Insecure Storage of Sensitive Information vulnerability in Rdbrck Shift

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
rdbrck
CWE-922

Summary

Redbrick Shift through 3.4.3 allows an attacker to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.

Common Weakness Enumeration (CWE)