018 – Improper authentication for shared folders
Description
The folders that are shared over the network do not require any authentication to be accessed.
Impact
Access to sensitive information stored in folders.
Recommendation
Limit the access to shared folders only to authorized users with their credentials.
Threat
Anonymous attacker from local network.
Expected Remediation Time
Score 4.0
Default score using CVSS 4.0. It may change depending on the context of the src.
Base 4.0
- Attack vector: A
- Attack complexity: L
- Attack Requirements: N
- Privileges required: L
- User interaction: N
- Confidentiality (VC): H
- Integrity (VI): N
- Availability (VA): N
- Confidentiality (SC): H
- Integrity (SI): N
- Availability (SA): N
Threat 4.0
- Exploit maturity: A