Enhancement: default-logins/UCMDB/ucmdb-default-login.yaml by mp
parent
5a99c2c4f4
commit
b7d2b80dd0
|
@ -1,9 +1,14 @@
|
||||||
id: ucmdb-default-login
|
id: ucmdb-default-login
|
||||||
|
|
||||||
info:
|
info:
|
||||||
name: Micro Focus UCMDB Default Login
|
name: Micro Focus Universal CMDB Default Login
|
||||||
author: dwisiswant0
|
author: dwisiswant0
|
||||||
severity: high
|
severity: high
|
||||||
|
description: Micro Focus Universal CMDB default login credentials were discovered for diagnostics/admin. Note there is potential for this to be chained together with other vulnerabilities as with CVE-2020-11853 and CVE-2020-11854.
|
||||||
|
reference:
|
||||||
|
- https://packetstormsecurity.com/files/161182/Micro-Focus-UCMDB-Remote-Code-Execution.htm
|
||||||
|
classification:
|
||||||
|
cwe-id: CWE-798
|
||||||
tags: ucmdb,default-login
|
tags: ucmdb,default-login
|
||||||
|
|
||||||
requests:
|
requests:
|
||||||
|
@ -31,3 +36,5 @@ requests:
|
||||||
part: header
|
part: header
|
||||||
words:
|
words:
|
||||||
- "LWSSO_COOKIE_KEY"
|
- "LWSSO_COOKIE_KEY"
|
||||||
|
|
||||||
|
# Enhanced by mp on 2022/03/07
|
||||||
|
|
Loading…
Reference in New Issue