Vulnerabilities > CVE-2019-12914 - Insecure Storage of Sensitive Information vulnerability in Rdbrck Shift

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
rdbrck
CWE-922

Summary

Redbrick Shift through 3.4.3 allows an attacker to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.

Common Weakness Enumeration (CWE)