CVE-2017-14376

high

Description

EMC AppSync Server prior to 3.5.0.1 contains database accounts with hardcoded passwords that could potentially be exploited by malicious users to compromise the affected system.

References

Advisories

http://www.securityfocus.com/bid/101626

http://seclists.org/fulldisclosure/2017/Oct/68

Details

Source: Mitre, NVD

Published: 2017-11-01

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H