2021-02-09 04:45:53
mitre
PUBLISHED
Username enumeration in present in Tufin SecureTrack. Its affecting all versions of SecureTrack. The vendor has decided not to fix this vulnerability. Vendors response: "This attack requires access to the internal network. If an attacker is part of the internal network, they do not require access to TOS to know the usernames".