PT-2022-26299 · Pctechsoft · Pcsecure
Miguel Chaparro Pedraza
+1
·
Published
2022-10-20
·
Updated
2025-05-08
·
CVE-2022-42176
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
PCTechSoft PCSecure version 5.0.8.xw
Description
The issue is related to the use of hard-coded credentials in configuration files, which can lead to unauthorized access to the admin panel.
Recommendations
For PCTechSoft PCSecure version 5.0.8.xw, consider removing or modifying the hard-coded credentials in the configuration files to prevent unauthorized access to the admin panel. As a temporary workaround, restrict access to the admin panel until the issue is resolved.
Exploit
Fix
Using Hardcoded Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Pcsecure