#VU65128 Use of hard-coded credentials in IBM Security SiteProtector System - CVE-2020-4150

Cybersecurity Help s.r.o.

Published: 2022-07-12

Vulnerability identifier: #VU65128

Vulnerability risk: Medium

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2020-4150

CWE-ID: CWE-798

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
IBM Security SiteProtector System
Server applications / IDS/IPS systems, Firewalls and proxy servers

Vendor: IBM Corporation

Description

The vulnerability allows a remote attacker to gain full access to vulnerable system.

The vulnerability exists due to presence of hard-coded credentials, such as a password or cryptographic key. A remote unauthenticated attacker can access the affected system using the hard-coded credentials.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

IBM Security SiteProtector System: 3.1.1.0 - 3.1.1.23

External links
https://exchange.xforce.ibmcloud.com/vulnerabilities/174142
https://www.ibm.com/support/pages/node/6602547

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in IBM Security SiteProtector System