{"api_version":"1","generated_at":"2026-04-25T09:41:30+00:00","cve":"CVE-2010-3245","urls":{"html":"https://cve.report/CVE-2010-3245","api":"https://cve.report/api/cve/CVE-2010-3245.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2010-3245","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2010-3245"},"summary":{"title":"CVE-2010-3245","description":"The automated-backup functionality in Blackboard Transact Suite (formerly Blackboard Commerce Suite) stores the (1) database username and (2) database password in cleartext in (a) script and (b) batch (.bat) files, which allows local users to obtain sensitive information by reading a file.","state":"PUBLIC","assigner":"cve@mitre.org","published_at":"2010-09-07 18:00:00","updated_at":"2013-01-04 05:00:00"},"problem_types":["CWE-200"],"metrics":[],"references":[{"url":"http://www.kb.cert.org/vuls/id/204055","name":"VU#204055","refsource":"CERT-VN","tags":["US Government Resource"],"title":"US-CERT Vulnerability Note VU#204055","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.kb.cert.org/vuls/id/MAPG-86YPVM","name":"http://www.kb.cert.org/vuls/id/MAPG-86YPVM","refsource":"MISC","tags":["US Government Resource"],"title":"VU#204055 - Blackboard Transact database credentials disclosure","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2010-3245","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2010-3245","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2010","cve_id":"3245","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"blackboard","cpe5":"transact_suite","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2010","cve_id":"3245","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"blackboard","cpe5":"transact_suite","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2010-3245","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"The automated-backup functionality in Blackboard Transact Suite (formerly Blackboard Commerce Suite) stores the (1) database username and (2) database password in cleartext in (a) script and (b) batch (.bat) files, which allows local users to obtain sensitive information by reading a file."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"http://www.kb.cert.org/vuls/id/MAPG-86YPVM","refsource":"MISC","url":"http://www.kb.cert.org/vuls/id/MAPG-86YPVM"},{"name":"VU#204055","refsource":"CERT-VN","url":"http://www.kb.cert.org/vuls/id/204055"}]}},"nvd":{"publishedDate":"2010-09-07 18:00:00","lastModifiedDate":"2013-01-04 05:00:00","problem_types":["CWE-200"],"metrics":{"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:P/I:N/A:N","accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE","baseScore":2.1},"severity":"LOW","exploitabilityScore":3.9,"impactScore":2.9,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:blackboard:transact_suite:-:*:*:*:*:*:*:*","cpe_name":[]}]}]}},"legacy_mitre":{"record":{"CveYear":"2010","CveId":"3245","Ordinal":"45517","Title":"CVE-2010-3245","CVE":"CVE-2010-3245","Year":"2010"},"notes":[{"CveYear":"2010","CveId":"3245","Ordinal":"1","NoteData":"The automated-backup functionality in Blackboard Transact Suite (formerly Blackboard Commerce Suite) stores the (1) database username and (2) database password in cleartext in (a) script and (b) batch (.bat) files, which allows local users to obtain sensitive information by reading a file.","Type":"Description","Title":null},{"CveYear":"2010","CveId":"3245","Ordinal":"2","NoteData":"2010-09-07","Type":"Other","Title":"Published"}]}}}