PT-2016-6974 · Dentsply Sirona · Cdr Dicom

Justin Shafer

Published

2016-09-21

Updated

2016-11-28

CVE-2016-6530

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Dentsply Sirona CDR Dicom versions 5 and earlier

Description The issue allows remote attackers to obtain administrative access by leveraging knowledge of default passwords for the sa and cdr accounts.

Recommendations For Dentsply Sirona CDR Dicom versions 5 and earlier, change the default passwords for the sa and cdr accounts to secure passwords.

Fix

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-798

Related Identifiers

CVE-2016-6530

Affected Products

Cdr Dicom

PT-2016-6974 · Dentsply Sirona · Cdr Dicom

CVE-2016-6530

Weakness Enumeration

Related Identifiers

Affected Products

References · 5