IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 295972.
Weakness
The product stores a password in plaintext within resources such as memory or files.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Datacap | Ibm | 9.1.5 (including) | 9.1.5 (including) |
| Datacap | Ibm | 9.1.6 (including) | 9.1.6 (including) |
| Datacap | Ibm | 9.1.7 (including) | 9.1.7 (including) |
| Datacap | Ibm | 9.1.8 (including) | 9.1.8 (including) |
| Datacap | Ibm | 9.1.9 (including) | 9.1.9 (including) |