CVE-2018-16957
Oracle WebCenter Interaction 10.3.3 search service’s queryd.exe is built with a hardcoded password (i1g2s3c4) used for authentication, and customers cannot customize this credential. A remote attacker could issue search queries over the network to exfiltrate large amounts of sensitive information...