HP SiteScope Default Credentials
high Nessus Plugin ID 56024
Language:
Synopsis
The remote web application uses default credentials.Description
It is possible to log into the remote HP SiteScope instance by providing default credentials. This may permit creating, deleting, and changing the passwords of SiteScope users.Solution
Change the credentials.Plugin Details
Severity: High
ID: 56024
File Name: hp_sitescope_default_creds.nasl
Version: 1.8
Type: remote
Family: CGI abuses
Published: 8/31/2011
Updated: 1/19/2021
Risk Information
CVSS v2
Risk Factor: High
Base Score: 7.5
Temporal Score: 7.5
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Temporal Vector: E:H/RL:ND/RC:ND
Vulnerability Information
CPE: cpe:/a:hp:mercury_sitescope
Required KB Items: www/sitescope
Excluded KB Items: global_settings/supplied_logins_only