Security Advisory

CVE-2019-25241

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-24 19:27:58

Last updated 2025-12-31 13:57:16

Assigner VulnCheck

State PUBLISHED

Description

FaceSentry Access Control System 6.4.8 contains a critical authentication vulnerability with hard-coded SSH credentials for the wwwuser account. Attackers can leverage the insecure sudoers configuration to escalate privileges and gain root access by executing sudo commands without authentication.

← Browse all CVEs View on cve.org ↗