From b7d2b80dd053c2ea668cc9f333478a4e8c6067d3 Mon Sep 17 00:00:00 2001
From: MostInterestingBotInTheWorld
 <98333686+MostInterestingBotInTheWorld@users.noreply.github.com>
Date: Mon, 7 Mar 2022 16:51:17 -0500
Subject: [PATCH] Enhancement: default-logins/UCMDB/ucmdb-default-login.yaml by
 mp

---
 default-logins/UCMDB/ucmdb-default-login.yaml | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/default-logins/UCMDB/ucmdb-default-login.yaml b/default-logins/UCMDB/ucmdb-default-login.yaml
index d7dc80bd03..169611f6d5 100644
--- a/default-logins/UCMDB/ucmdb-default-login.yaml
+++ b/default-logins/UCMDB/ucmdb-default-login.yaml
@@ -1,9 +1,14 @@
 id: ucmdb-default-login
 
 info:
-  name: Micro Focus UCMDB Default Login
+  name: Micro Focus Universal CMDB Default Login
   author: dwisiswant0
   severity: high
+  description: Micro Focus Universal CMDB default login credentials were discovered for diagnostics/admin. Note there is potential for this to be chained together with other vulnerabilities as with CVE-2020-11853 and CVE-2020-11854.
+  reference:
+    - https://packetstormsecurity.com/files/161182/Micro-Focus-UCMDB-Remote-Code-Execution.htm
+  classification:
+    cwe-id: CWE-798
   tags: ucmdb,default-login
 
 requests:
@@ -31,3 +36,5 @@ requests:
         part: header
         words:
           - "LWSSO_COOKIE_KEY"
+
+# Enhanced by mp on 2022/03/07