CVE-2017-14376
CVE-2017-14376 affects EMC AppSync Server prior to 3.5.0.1. The vulnerability arises from hardcoded database passwords for accounts, specifically the administrative-privilege accounts (e.g., apollosuperuser and apollouser). An attacker with local access to the AppSync PostgreSQL database and know...