2 Replies Latest reply on Feb 11, 2020 8:33 AM by Yuliya Melikhova

    Is new CMDB UI secure?

    Yuliya Melikhova
      Share This:

      Hi all!

       

      It has come to my attention that not only you are able to access new CMDB UI outside of BMC Remedy scope (without first authenticating with RSSO), but you can also access user's login and password in plain text without any trouble by looking up  "login" operation and it's headers in the Google Chrome's Network tab. Are there any plans to make this information protected? It is a pretty big security concern, at least for us.

       

      Thank you!