Loading market data...
← Back to CVE feed

CVE-2026-10540

MEDIUM CVSS 5.6 View on NVD ↗

Description

The Control-M/Enterprise Manager uses weak protections for stored hashes of account passwords, potentially allowing offline password recovery attacks if credential data is obtained by an attacker. This vulnerability affects Control-M/Enterprise Manager unsupported versions 9.0.20.x and potentially earlier unsupported versions

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L
Published: Jul 01, 2026 08:16 UTC Modified: Jul 01, 2026 19:59 UTC