VYPR

Lacerte

by Intuit

CVEs (2)

  • CVE-2018-11338HigJul 31, 2018
    risk 0.49cvss 7.5epss 0.01

    Intuit Lacerte 2017 for Windows in a client/server environment transfers the entire customer list in cleartext over SMB, which allows attackers to (1) obtain sensitive information by sniffing the network or (2) conduct man-in-the-middle (MITM) attacks via unspecified vectors.…

  • CVE-2018-14833Jul 9, 2019
    risk 0.00cvss epss 0.01

    Intuit Lacerte 2017 has Incorrect Access Control.