Lucene search
HistoryMay 21, 2009 - 3:30 p.m.
CVE-2009-1745
armorlogic
profense
web application firewall
cve-2009-1745
security
vulnerability
default password
ssh
remote access
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7 High
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.4%
Armorlogic Profense Web Application Firewall before 2.2.22, and 2.4.x before 2.4.4, has a default root password hash, and permits password-based root logins over SSH, which makes it easier for remote attackers to obtain access.
Affected configurations
Node
armorlogicprofense_web_application_firewallRange≤2.2.21
ORarmorlogicprofense_web_application_firewallMatch2.4
Related
prion
prion
Default credentials
2009-05-21 15:30:00
cvelist
cvelist
CVE-2009-1745
2009-05-21 15:00:00
nvd
nvd
CVE-2009-1745
2009-05-21 15:30:01
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7 High
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.4%
Related for CVE-2009-1745