QLogic QConvergeConsole (QCC) GUI Web Interface Default Credentials

High Nessus Plugin ID 118331

Synopsis

The remote web interface is protected with a default password.

Description

The remote device appears to be running QLogic QConvergeConsole which contains a web interface with default credentials enabled.

Solution

Replace the default password with a strong password.

Plugin Details

Severity: High

ID: 118331

File Name: qlogic_qcc_default_creds.nasl

Version: 1.1

Type: remote

Family: Misc.

Published: 2018/10/24

Updated: 2018/10/24

Dependencies: 118332

Risk Information

Risk Factor: High

CVSS Score Source: manual

CVSS Score Rationale: Nvd score unavailable. assigned score for web interface default credentials.

CVSS v2.0

Base Score: 9

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:C

CVSS v3.0

Base Score: 8.6

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

Vulnerability Information

CPE: x-cpe:/a:qlogic:qconvergeconsole