Primary

Context

Senstar Symphony Information Disclosure Vulnerability via FetchStoredLicense Method

Vulnerability

Patched

A vulnerability allowing remote information disclosure has been identified in Senstar Symphony. This issue arises from the FetchStoredLicense method, which improperly exposes sensitive information, including stored credentials. The vulnerability can be exploited without authentication, potentially leading to further compromise on the affected system.

Impact

Exploitation of this vulnerability allows for unauthorized access to sensitive information, specifically stored credentials, which could be used for further exploitation or compromise of the system.

Remediation

Users can upgrade to Senstar Symphony version 8.11 or later to address this vulnerability.

Added: Dec 23, 2025, 10:54 PM

Updated: Dec 23, 2025, 10:54 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

7.0

remediation

7.7

relevance

1.5

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

7.0

remediation

7.7

relevance

1.5

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Senstar Symphony Information Disclosure Vulnerability via FetchStoredLicense Method

Vulnerability

Impact

Remediation

Affected Products

Senstar Symphony

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating