Tecknodreams SapphireIMS is an ITIL 2011 certified enterprise-class service management system from Tecknodreams India.An operating system command injection vulnerability exists in Tecknodreams SapphireIMS 5.0, which stems from the fact that in SapphireIMS 5.0, a client can use hard-coded credentials (username: sapphire, password: ims) and gain access to the portal. An attacker could exploit the vulnerability to inject malicious operating system commands and execute code on the server.
CPE | Name | Operator | Version |
---|---|---|---|
tecknodreams sapphireims | eq | 5.0 |