Detections
Analytics

Acclaim Systems USAHERDS Hard-Coded Credentials (VMSA-2025-0003)

high Nessus Plugin ID 241985

Language:

Synopsis

Acclaim Systems USAHERDS running on the remote host may be affected by a hard-coded credentials vulnerability.

Description

The version of Acclaim Systems USAHERDS running on the remote host may be missing a vendor supplied patch. It is possible, therefore, that it is affected by a vulnerability: it might use hard-coded credentials.

Note that Nessus has not tested for this issue.

Solution

Upgrade Acclaim Systems USAHERDS to a version later than 7.4.0.1.

See Also

http://www.nessus.org/u?a5c90c10

Plugin Details

Severity: High

ID: 241985

File Name: acclaim_systems_usaherds_7_4_0_2.nasl

Version: 1.1

Type: remote

Family: Misc.

Published: 7/11/2025

Updated: 7/11/2025

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: High

Score: 7.4

CVSS v2

Risk Factor: High

Base Score: 7.6

Vector: CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2021-44207

CVSS v3

Risk Factor: High

Base Score: 8.1

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:/a:acclaimsystems:usaherds

Required KB Items: installed_sw/Acclaim Systems USAHERDS

Patch Publication Date: 12/21/2021

Vulnerability Publication Date: 12/21/2021

CISA Known Exploited Vulnerability Due Dates: 1/13/2025

Reference Information

CVE: CVE-2021-44207