Loss of Confidentiality,
Loss of Integrity
Demarc PureSecure contains a flaw that may allow a malicious user to manipulate arbitrary data. The problem is that the application stores the authentication information for the logging server in plaintext. It is possible that the flaw may allow a malicious user to gain access to the logging server and manipulate arbitrary events in the database resulting in a loss of integrity.
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.