PT-2024-11551 · Priva · Priva Topcontrol Suite
Victor Pasman
·
Published
2024-01-02
·
Updated
2024-01-09
·
CVE-2022-3010
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Priva TopControl Suite (affected versions not specified)
Description
The Priva TopControl Suite contains predictable credentials for the SSH service, based on the Serial number. This makes it possible for an attacker to calculate the login credentials for the Priva TopControl suite.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Priva Topcontrol Suite