Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistCertccCVELIST:CVE-2010-0214
HistoryJan 12, 2011 - 12:00 a.m.

CVE-2010-0214

2011-01-1200:00:00
certcc
www.cve.org

6.2 Medium

AI Score

Confidence

Low

0.01 Low

EPSS

Percentile

83.7%

JSON

The administrative interface on the PolyVision RoomWizard with firmware 3.2.3 places the Sync Connector Active Directory (AD) credentials in a web form that is accessed over HTTP on port 80, which allows remote attackers to obtain sensitive information by reading the HTML source code corresponding to the /admin/sign/DeviceSynch URI.

Related

cert 1
nvd 2
cve 2
packetstorm 1
prion 2
cvelist 1
cert
cert
PolyVision RoomWizard insecurely stores Sync Connector Active Directory credentials and uses default administrative password
2011-01-07 00:00:00
nvd
nvd
CVE-2010-0214
2011-01-12 01:00:01
CVE-2011-0423
2011-01-12 01:00:02
cve
cve
CVE-2010-0214
2011-01-12 01:00:01
CVE-2011-0423
2011-01-12 01:00:02
packetstorm
packetstorm
RoomWizard Credential Disclosure
2011-01-06 00:00:00
prion
prion
Design/Logic Flaw
2011-01-12 01:00:00
Default credentials
2011-01-12 01:00:00
cvelist
cvelist
CVE-2011-0423
2011-01-12 00:00:00

6.2 Medium

AI Score

Confidence

Low

0.01 Low

EPSS

Percentile

83.7%

JSON
Related for CVELIST:CVE-2010-0214
cert1nvd2cve2packetstorm1prion2cvelist1