Описание
Programi Bilanc Build 007 Release 014 31.01.2020 supplies a .exe file containing several hardcoded credentials to different servers that allow remote attackers to gain access to the complete infrastructure including the website, update server, and external issue tracking tools.
Ссылки
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 014_31.01.2020 (включая)
cpe:2.3:a:bilanc:bilanc:*:*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.01109
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-798
Связанные уязвимости
github
больше 3 лет назад
Programi Bilanc Build 007 Release 014 31.01.2020 supplies a .exe file containing several hardcoded credentials to different servers that allow remote attackers to gain access to the complete infrastructure including the website, update server, and external issue tracking tools.
EPSS
Процентиль: 78%
0.01109
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-798