Detections
Analytics

Tenable Security Center Default Credentials

high Nessus Plugin ID 36019

Language:

Synopsis

The remote web application can be accessed with default credentials.

Description

Tenable Network Security's Security Center, an asset-based security and compliance monitoring application, is installed on the remote system. By supplying default credentials, it is possible to log into the remote web application.

Solution

Refer to the documentation and follow the steps to change the default password.

See Also

http://www.nessus.org/products/sc/

Plugin Details

Severity: High

ID: 36019

File Name: sc3_default_creds.nasl

Version: 1.12

Type: remote

Family: CGI abuses

Published: 3/26/2009

Updated: 1/19/2021

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

Excluded KB Items: global_settings/supplied_logins_only