Primary

Context

Y Soft SafeQ 6 Workflow Connector Password Exposure Vulnerability

Vulnerability

Patched

A vulnerability in Y Soft SafeQ 6 prior to MU106 allows administrators with UI access to view the Workflow Connector password in plaintext using browser developer tools. This issue only affects customers with a password-protected scan workflow connector.

Impact

Exploitation of this vulnerability could lead to unauthorized disclosure of password information for the Workflow Connector.

Remediation

Users can update to Y Soft SafeQ 6 MU106 or later, where this vulnerability has been addressed.

Added: Jan 14, 2026, 1:19 PM

Updated: Jan 14, 2026, 5:17 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

4.4

remediation

7.7

relevance

2.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

4.4

remediation

7.7

relevance

2.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Y Soft SafeQ 6 Workflow Connector Password Exposure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Y Soft SafeQ 6

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating