PT-2023-13737 · Unknown · Fighting Cock Information System

Hopscotch

Publicado

2023-04-26

Atualizado

2023-05-04

CVE-2022-39989

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Fighting Cock Information System version 1.0

Description An issue was discovered in the system, which uses default credentials but does not force nor prompt administrators to change these credentials.

Recommendations For Fighting Cock Information System version 1.0, consider changing the default credentials immediately and ensure that administrators are prompted to update their credentials to prevent unauthorized access. As a temporary workaround, restrict access to the system until the default credentials are changed.

Correção

Using Hardcoded Credentials

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-798

Identificadores relacionados

CVE-2022-39989

Produtos afetados

Fighting Cock Information System

PT-2023-13737 · Unknown · Fighting Cock Information System

CVE-2022-39989

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6