← voltar
CVE-2014-4875

CVE-2014-4875

EPSS 2.1%
CreateBossCredentials.jar in Toshiba CHEC before 6.6 build 4014 and 6.7 before build 4329 contains a hardcoded AES key, which allows attackers to discover Back Office System Server (BOSS) DB2 database credentials by leveraging knowledge of this key in conjunction with bossinfo.pro read access.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://www.kb.cert.org/vuls/id/301788http://www.kb.cert.org/vuls/id/JLAD-9X4SPN