PT-2020-19912 · Intellian · Intellian Aptus

Published

2020-01-27

Updated

2020-01-30

CVE-2020-8001

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Intellian Aptus application version 1.0.2

Description The issue concerns a hardcoded password in the masteruser FTP account, with the password being intellian. This hardcoded password could potentially allow unauthorized access.

Recommendations For Intellian Aptus application version 1.0.2, consider changing the hardcoded password intellian for the masteruser FTP account to a secure, unique password to prevent unauthorized access. As a temporary workaround, restrict access to the FTP account until a secure password can be implemented.

Exploit

Fix

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-798

Related Identifiers

CVE-2020-8001

Affected Products

Intellian Aptus

PT-2020-19912 · Intellian · Intellian Aptus

CVE-2020-8001

Weakness Enumeration

Related Identifiers

Affected Products

References · 4