Greg Ramey

**Name of the Vulnerable Software and Affected Versions** Thornberry NDoc versions prior to 8.0 **Description** The issue concerns a default database user password that is stored in cleartext in a log file during client installation on laptops. This password can be used to gain full admin or system access to client devices, if no firewall is present, or to the NDoc server itself. An attacker who obtains this password can access the system without requiring local access. **Recommendations** For Thornberry NDoc versions prior to 8.0, change the default database user password to a unique and secure password to prevent unauthorized access. Consider implementing a firewall to restrict access to client devices and the NDoc server. As a temporary workaround, restrict access to the log file containing the cleartext password to minimize the risk of exploitation.