CVE-2020-10552

Name of the Vulnerable Software and Affected Versions Psyprax versions prior to 3.2.2

Description An issue was discovered in Psyprax where the Firebird database is accessible with the default user sysdba and password masterke after installation. This allows any user to access it and read and modify the contents, including passwords. Local database files can be accessed directly as well.

Recommendations For versions prior to 3.2.2, update to version 3.2.2 or later to resolve the issue. As a temporary workaround, consider changing the default password for the sysdba user to prevent unauthorized access to the Firebird database. Restrict access to local database files to minimize the risk of exploitation.