OpenNMS has a default password of rtc for the rtc account, which makes it easier for remote attackers to obtain access by leveraging knowledge of the credentials.
References
Link | Resource |
---|---|
http://www.opennms.org/wiki/CVE-2015-0975 | Vendor Advisory |
http://www.rapid7.com/db/modules/auxiliary/gather/opennms_xxe | Exploit |
http://www.opennms.org/wiki/CVE-2015-0975 | Vendor Advisory |
http://www.rapid7.com/db/modules/auxiliary/gather/opennms_xxe | Exploit |
Configurations
History
21 Nov 2024, 02:37
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.opennms.org/wiki/CVE-2015-0975 - Vendor Advisory | |
References | () http://www.rapid7.com/db/modules/auxiliary/gather/opennms_xxe - Exploit |
Information
Published : 2015-10-16 20:59
Updated : 2024-11-21 02:37
NVD link : CVE-2015-7856
Mitre link : CVE-2015-7856
CVE.ORG link : CVE-2015-7856
JSON object : View
Products Affected
opennms
- opennms
CWE
CWE-255
Credentials Management Errors