The FACSChorus software contains sensitive information stored in plaintext. A threat actor could gain hardcoded secrets used by the application, which include tokens and passwords for administrative accounts.
oryginał ENCVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:LBd Facschorus
APPBd3.03.15.05.1HP Z2 Tower G5
HWHpwszystkie wersjeHP Z2 Tower G9
HWHpwszystkie wersje
Powiązane podatności
The FACSChorus workstation operating system does not restrict what devices can interact with its USB ports. If...
There is no BIOS password on the FACSChorus workstation. A threat actor with physical access to the workstatio...
The FACSChorus software database can be accessed directly with the privileges of the currently logged-in user....
The Operating System hosting the FACSChorus application is configured to allow transmission of hashed user cre...
The FACSChorus workstation does not prevent physical access to its PCI express (PCIe) slots, which could allow...