8034 matches found
CVE-2018-5552 DocuTrac DTISQLInstaller.exe Hard-Coded Salt
Versions of DocuTrac QuicDoc and Office Therapy that ship with DTISQLInstaller.exe version 1.6.4.0 and prior contains a hard-coded cryptographic salt, "S@l+&pepper"...
CVE-2017-8013
EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts with hard-coded passwords and various privileges. Affected accounts are: "Apollo System Test", "emc.dpa.agent.logon" and "emc.dpa.metrics.logon". An attacker with knowledge of the password...
CVE-2017-8013
EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts with hard-coded passwords and various privileges. Affected accounts are: "Apollo System Test", "emc.dpa.agent.logon" and "emc.dpa.metrics.logon". An attacker with knowledge of the password...
CVE-2017-8013
CVE-2017-8013 affects EMC Data Protection Advisor 6.3.x (before patch 67) and 6.4.x (before patch 130). Root cause: undocumented accounts with hard-coded passwords (Apollo System Test, emc.dpa.agent.logon, emc.dpa.metrics.logon) enabling access via REST APIs and potentially administrative privile...
CVE-2017-8013
EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts with hard-coded passwords and various privileges. Affected accounts are: "Apollo System Test", "emc.dpa.agent.logon" and "emc.dpa.metrics.logon". An attacker with knowledge of the password...
Prisma Industriale Checkweigher PrismaWEB 1.21 - Hard-Coded Credentials
Prisma Industriale Checkweigher PrismaWEB 1.21 - Hard-Coded Credentials Prisma Industriale Checkweigher PrismaWEB 1.21 Authentication Bypass Vendor: Prisma Industriale S.r.l. Product web page: https://www.prismaindustriale.com Affected version: 1.0 Rev 21, EPROM 202FWSAM ?? Summary: Web...
Prisma Industriale Checkweigher PrismaWEB 1.21 - Hard-Coded Credentials
Prisma Industriale Checkweigher PrismaWEB 1.21 Authentication Bypass Vendor: Prisma Industriale S.r.l. Product web page: https://www.prismaindustriale.com Affected version: 1.0 Rev 21, EPROM 202FWSAM ?? Summary: Web Administration of Machine. Desc: The vulnerability exists due to the disclosure o...
Unauthorized Access Vulnerability in vApp Manager for Multiple Dell Products
Dell EMC Unisphere for VMAX Virtual Appliance and so on are products of Dell Inc. in the United States. the Dell EMC Unisphere for VMAX Virtual Appliance vApp is a management tool for VMAX storage arrays. the EMC Solutions Enabler Virtual Appliance is a Solutions Enabler Virtual Appliance. vApp...
Prisma Industriale Checkweigher PrismaWEB 1.21 Authentication Bypass Vulnerability
Exploit for multiple platform in category web applications Prisma Industriale Checkweigher PrismaWEB 1.21 Authentication Bypass Vendor: Prisma Industriale S.r.l. Product web page: https://www.prismaindustriale.com Affected version: 1.0 Rev 21, EPROM 202FWSAM ?? Summary: Web Administration of...
Prisma Industriale Checkweigher PrismaWEB 1.21 Authentication Bypass
Prisma Industriale Checkweigher PrismaWEB 1.21 Authentication Bypass Vendor: Prisma Industriale S.r.l. Product web page: https://www.prismaindustriale.com Affected version: 1.0 Rev 21, EPROM 202FWSAM ?? Summary: Web Administration of Machine. Desc: The vulnerability exists due to the disclosure o...
Prisma Industriale Checkweigher PrismaWEB 1.21 Authentication Bypass
Summary Web Administration of Machine. Description The vulnerability exists due to the disclosure of hard-coded credentials allowing an attacker to effectively bypass authentication of PrismaWEB with administrator privileges. The credentials can be disclosed by simply navigating to the loginpar.j...
Cisco products in the presence of severe hard-coded password vulnerabilities and Java deserialization vulnerability-vulnerability warning-the black bar safety net
Recently, Cisco released 22 security Bulletin, which includes two important fixes: fixes a hard-coded password Vulnerability CVE-2018-0141 and a Java deserialization Vulnerability, CVE-2018-0147 to. ! Hard-coded password vulnerability Hard-coded password vulnerability affecting Cisco Prime...
Cisco Prime Collaboration Provisioning Hard-Coded Password Vulnerability (cisco-sa-20180307-cpcp
According to its self-reported version number, the remote Cisco Prime Collaboration Provisioning server is 11.6. It is, therefore, affected by a hard-coded password vulnerability which an attacker could use to obtain low-level privileges and subsequently escalate to root. Note that Nessus has not...
Hard-Coded Password in Cisco Software Lets Attackers Take Over Linux Servers
A medium yet critical vulnerability has been discovered in Cisco Prime Collaboration Provisioning software that could allow a local attacker to elevate privileges to root and take full control of a system. Cisco Prime Collaboration Provisioning PCP application allows administrators to remotely...
CVE-2018-1216
A hard-coded password vulnerability was discovered in vApp Manager which is embedded in Dell EMC Unisphere for VMAX, Dell EMC Solutions Enabler, Dell EMC VASA Virtual Appliances, and Dell EMC VMAX Embedded Management eManagement: Dell EMC Unisphere for VMAX Virtual Appliance versions prior to...
Hardcoded credentials
A hard-coded password vulnerability was discovered in vApp Manager which is embedded in Dell EMC Unisphere for VMAX, Dell EMC Solutions Enabler, Dell EMC VASA Virtual Appliances, and Dell EMC VMAX Embedded Management eManagement: Dell EMC Unisphere for VMAX Virtual Appliance versions prior to...
CVE-2018-1216
A hard-coded password vulnerability was discovered in vApp Manager which is embedded in Dell EMC Unisphere for VMAX, Dell EMC Solutions Enabler, Dell EMC VASA Virtual Appliances, and Dell EMC VMAX Embedded Management eManagement: Dell EMC Unisphere for VMAX Virtual Appliance versions prior to...
CVE-2018-1216
A hard-coded password vulnerability was discovered in vApp Manager which is embedded in Dell EMC Unisphere for VMAX, Dell EMC Solutions Enabler, Dell EMC VASA Virtual Appliances, and Dell EMC VMAX Embedded Management eManagement: Dell EMC Unisphere for VMAX Virtual Appliance versions prior to...
CVE-2018-1216
Dell EMC vApp Manager vulnerability (CVE-2018-1216) affects Unisphere for VMAX Virtual Appliance, Solutions Enabler Virtual Appliance, VASA Virtual Appliance, and VMAX Embedded Management (eManagement) with undoc default account (smc) and a hard-coded password. Versions affected: Unisphere for VM...
CVE-2018-0141
A vulnerability in Cisco Prime Collaboration Provisioning PCP Software 11.6 could allow an unauthenticated, local attacker to log in to the underlying Linux operating system. The vulnerability is due to a hard-coded account password on the system. An attacker could exploit this vulnerability by...