NetIQ Privileged User Manager Default Admin Password

critical Nessus Plugin ID 62990

Language:

Synopsis

The remote web server hosts a web application that is protected by known default credentials.

Description

Nessus was able to login to the NetIQ Privileged User Manager install running on the remote host using default, known credentials for the 'admin' user.

Solution

Change the default 'admin' password.

Plugin Details

Severity: Critical

ID: 62990

File Name: netiq_pum_default_password.nasl

Version: 1.8

Type: remote

Family: CGI abuses

Published: 11/21/2012

Updated: 1/19/2021

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:netiq:privileged_user_manager

Required KB Items: www/netiq_pum

Excluded KB Items: Settings/disable_cgi_scanning, global_settings/supplied_logins_only

Exploit Available: true

Exploit Ease: Exploits are available

Detections

Analytics