Hardcoded credentials

2014-10-1901:55:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

48.1%

JSON

CareFusion Pyxis SupplyStation 8.1 with hardware test tool before 1.0.16 has a hardcoded application password, which makes it easier for remote authenticated users to obtain application-file access via unspecified vectors.

CPENameOperatorVersion
pyxis_supplystationeq8.1

CPE	Name	Operator	Version
	pyxis_supplystation	eq	8.1

References

ics-cert.us-cert.gov/advisories/ICSA-14-288-01