Security Advisory

CVE-2020-25565

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-11 20:23:49

Last updated 2024-08-04 15:33:05

Assigner mitre

State PUBLISHED

Description

In SapphireIMS 5.0, it is possible to use the hardcoded credential in clients (username: sapphire, password: ims) and gain access to the portal. Once the access is available, the attacker can inject malicious OS commands on “ping”, “traceroute” and “snmp” functions and execute code on the server.

← Browse all CVEs View on cve.org ↗