Username enumeration in present in Tufin SecureTrack. Its affecting all versions of SecureTrack. The vendor has decided not to fix this vulnerability. Vendors response: This attack requires access to the internal network. If an attacker is part of the internal network, they do not require access to TOS to know the usernames.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Securetrack | Tufin | * | * |