CVE-2018-11062

Name of the Vulnerable Software and Affected Versions Integrated Data Protection Appliance versions 2.0 through 2.2

Description The issue concerns undocumented accounts named support and admin that are protected with default passwords, allowing a malicious user with knowledge of these passwords to potentially log in to the system. These accounts have limited privileges, granting access to certain system files for read and write operations.

Recommendations For versions 2.0 through 2.2, change the default passwords of the support and admin accounts to secure passwords to prevent unauthorized access. As a temporary workaround, consider disabling the support and admin accounts until secure passwords are set. Restrict access to system files that can be accessed by these accounts to minimize the risk of exploitation.