OpenNMS has a default password of rtc for the rtc account, which makes it easier for remote attackers to obtain access by leveraging knowledge of the credentials.
oryginał ENCVSS Vector
AV:N/AC:L/Au:N/C:C/I:C/A:COpennms
APPOpennmswszystkie wersje
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Powiązane podatności
CVE-2016-6555HIGH7.1ten sam produkt
OpenNMS version 18.0.1 and prior are vulnerable to a stored XSS issue due to insufficient filtering of SNMP tr...
CVE-2016-6556HIGH7.1ten sam produkt
OpenNMS version 18.0.1 and prior are vulnerable to a stored XSS issue due to insufficient filtering of SNMP ag...
CVE-2021-25932MEDIUM5.4ten sam produkt
In OpenNMS Horizon, versions opennms-1-0-stable through opennms-27.1.0-1; OpenNMS Meridian, versions meridian-...
CVE-2020-1652MEDIUM5.6ten sam produkt
OpenNMS is accessible via port 9443
CVE-2014-3960MEDIUM4.3ten sam produkt
Multiple cross-site scripting (XSS) vulnerabilities in OpenNMS before 1.12.7 allow remote attackers to inject ...