CVE-2019-6499

Name of the Vulnerable Software and Affected Versions Teradata Viewpoint versions prior to 14.0 Teradata Viewpoint version 16.20.00.02-b80 and earlier

Description The issue concerns a hardcoded password TDv1i2e3w4 for the viewpoint database account, which could be exploited by malicious users to compromise the system. This password is found in the server.xml file located in the viewpoint-portalconf directory.

Recommendations For Teradata Viewpoint versions prior to 14.0, update to version 14.0 or later. For Teradata Viewpoint version 16.20.00.02-b80 and earlier, update to a version later than 16.20.00.02-b80. As a temporary workaround, consider changing the hardcoded password TDv1i2e3w4 for the viewpoint database account to a secure password until a patch is available.