Lucene search

[email protected]NVD:CVE-2022-39989

HistoryApr 26, 2023 - 2:15 p.m.

CVE-2022-39989

2023-04-2614:15:09

CWE-798

[email protected]

web.nvd.nist.gov

cve-2022-39989

information system

default credentials

administrators

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.4

Confidence

High

EPSS

0.002

Percentile

61.6%

JSON

An issue was discovered in Fighting Cock Information System 1.0, which uses default credentials, but does not force nor prompt the administrators to change the credentials.

Affected configurations

Nvd

Node

fighting_cock_information_system_projectfighting_cock_information_systemMatch1.0

VendorProductVersionCPE
fighting_cock_information_system_projectfighting_cock_information_system1.0cpe:2.3:a:fighting_cock_information_system_project:fighting_cock_information_system:1.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
fighting_cock_information_system_project	fighting_cock_information_system	1.0	cpe:2.3:a:fighting_cock_information_system_project:fighting_cock_information_system:1.0:::::::*

References

gist.github.com/0xHop/43c4da65e0d101328a46b1bd5a11b262

gist.github.com/0xHop/6ed962a1978edb1bd620c9c487400403

www.sourcecodester.com/php/12824/fighting-cock-information-system.html

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.4

Confidence

High

EPSS

0.002

Percentile

61.6%

JSON

Related for NVD:CVE-2022-39989

prion1 cvelist1 cve1