Lucene search
HistoryMay 07, 2010 - 6:24 p.m.
CVE-2009-4845
cve-2009-4845
configuration page
toutvirtual virtualiq pro 3.2
ssh credentials
remote attackers
sensitive information
6.5 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.002 Low
EPSS
Percentile
61.0%
The configuration page in ToutVirtual VirtualIQ Pro 3.2 build 7882 contains cleartext SSH credentials, which allows remote attackers to obtain sensitive information by reading the username and password fields.
Affected configurations
Node
toutvirtualvirtualiqMatch3.2-pro
| CPE | Name | Operator | Version |
|---|---|---|---|
| toutvirtual:virtualiq | toutvirtual virtualiq | eq | 3.2 |
Related
prion
prion
Default credentials
2010-05-07 18:24:00
nvd
nvd
CVE-2009-4845
2010-05-07 18:24:15
cvelist
cvelist
CVE-2009-4845
2010-05-07 17:43:00
6.5 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.002 Low
EPSS
Percentile
61.0%
Related for CVE-2009-4845