CVE-2018-11062

Description

Integrated Data Protection Appliance versions 2.0, 2.1, and 2.2 contain undocumented accounts named support and admin that are protected with default passwords. These accounts have limited privileges and can access certain system files only. A malicious user with the knowledge of the default passwords may potentially log in to the system and gain read and write access to certain system files.

Risk Information

Base Score

8.8

MODERATE

Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

0.48

Associated Vulnerability

Vulnerability	OS Platform
Use of Hard-coded Credentials Vulnerability (CVE-2018-11062)	NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234