Acclaim Systems USAHERDS Hard-Coded Credentials (CVE-2021-44207)

The version of Acclaim Systems USAHERDS running on the remote host may be missing a vendor supplied patch. It is possible, therefore, that it is affected by a vulnerability: it might use hard-coded credentials. Note that Nessus has not tested for this issue. %NASLMINLEVEL 80900 C Tenable, Inc...

Acclaim Systems USAHERDS Web Detection

Binary data acclaimsystemsusaherdsdetect.nbin...

CISA Adds Acclaim USAHERDS Vulnerability to KEV Catalog Amid Active Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Monday added a now-patched high-severity security flaw impacting Acclaim Systems USAHERDS to the Known Exploited Vulnerabilities KEV catalog, based on evidence of active exploitation in the wild. The vulnerability in question is...

Acclaim Systems USAHERDS Use of Hard-Coded Credentials Vulnerability

Acclaim Systems USAHERDS contains a hard-coded credentials vulnerability that could allow an attacker to achieve remote code execution on the system that runs the application. The MachineKey must be obtained via a separate vulnerability or other channel...

APT41 Spies Broke Into 6 US State Networks via a Livestock App

USAHerds – an app used PDF by farmers to speed their response to diseases and other threats to their livestock – has itself become an infection vector, used to pry open at least six U.S. state networks by one of China’s most prolific state-sponsored espionage groups. In a report published by...

Chinese state-sponsored threat group APT41 targets U.S. critical organizations using two Zero-Days

THREAT LEVEL: Red. For a detailed advisory, download the pdf file here A China state-sponsored threat group known as APT41 is observed compromising at least six U.S. state governments networks in a threat campaign beginning from May 2021. APT41 is a well-known Chinese state-sponsored espionage...

Chinese APT41 Hackers Broke into at Least 6 U.S. State Governments: Mandiant

APT41, the state-sponsored threat actor affiliated with China, breached at least six U.S. state government networks between May 2021 and February 2022 by retooling its attack vectors to take advantage of vulnerable internet-facing web applications. The exploited vulnerabilities included "a zero-d...

Chinese Spies Hacked a Livestock App to Breach US State Networks

Vulnerabilities in animal tracking software USAHERDS and Log4j gave the notorious APT41 group a foothold in multiple government systems...

VulnCheck KEV: CVE-2021-44207

Acclaim Systems USAHERDS contains a hard-coded credentials vulnerability that could allow an attacker to achieve remote code execution on the system that runs the application. The MachineKey must be obtained via a separate vulnerability or other channel...

CVE-2021-44207

Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials...

CVE-2021-44207

Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials...

Hardcoded credentials

Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials...

CVE-2021-44207

CVE-2021-44207 affects Acclaim USAHERDS (version 7.4.0.1 and earlier) due to hard-coded credentials, enabling potential unauthorized access and remote code execution as described by multiple sources. Public docs confirm the issue center is use of hard-coded credentials in USAHERDS, with CVSS metr...

CVE-2021-44207

Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials...

CVE-2021-44207

Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials...

PT-2021-24065

Name of the Vulnerable Software and Affected Versions: Acclaim USAHERDS versions 7.4.0.1 and earlier Description: The issue concerns the use of hard-coded credentials in Acclaim USAHERDS, allowing attackers to bypass authentication and gain unauthorized access to sensitive systems and data. This...

Acclaim USAHERDS 信任管理问题漏洞

Acclaim Systems Acclaim Usaherds is an Animal Health Emergency Reporting Diagnostic System from Acclaim Systems USA. A security vulnerability exists in Acclaim USAHERDS version 7.4.0.1 and prior versions that stems from the presence of hard-coded credentials in the program...

CVE-2021-44207

Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...