VYPR
Unrated severityNVD Advisory· Published Jul 5, 2007· Updated Jun 16, 2026

CVE-2007-3581

CVE-2007-3581

Description

The Jedox Palo 1.5 client transmits the password in cleartext, which might allow remote attackers to obtain the password by sniffing the network, as demonstrated by starting Excel with the Palo plugin, opening a cube, and performing an Insert View.

Affected products

2
  • Jedox/Palo2 versions
    cpe:2.3:a:jedox:palo:1.5:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:jedox:palo:1.5:*:*:*:*:*:*:*
    • (no CPE)range: = 1.5

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.