HP Client Automation Default Credentials

critical Nessus Plugin ID 52979

Language:

Synopsis

The remote web server is hosting a web application that uses default login credentials.

Description

The remote install of HP Client Automation has a default password ('secret') set. An attacker may connect to it to reconfigure the application and control remote devices.

Solution

Set a strong password for the 'admin' account.

Plugin Details

Severity: Critical

ID: 52979

File Name: hp_client_automation_default_creds.nasl

Version: 1.11

Type: remote

Family: CGI abuses

Published: 3/25/2011

Updated: 1/19/2021

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:hp:client_automation_administrator

Required KB Items: www/hp_client_automation

Excluded KB Items: global_settings/supplied_logins_only

Detections

Analytics