Medium severity4.3NVD Advisory· Published Feb 9, 2021· Updated Jun 17, 2026
CVE-2020-13461
CVE-2020-13461
Description
Username enumeration in present in Tufin SecureTrack. It's affecting all versions of SecureTrack. The vendor has decided not to fix this vulnerability. Vendor's response: "This attack requires access to the internal network. If an attacker is part of the internal network, they do not require access to TOS to know the usernames".
Affected products
2- Tufin/SecureTrackdescription
Patches
Vulnerability mechanics
References
1- github.com/Accenture/AARO-Bugs/blob/master/AARO-CVE-List.mdnvdThird Party Advisory
News mentions
0No linked articles in our index yet.