CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Posim: >> Evo Security Vulnerabilities

CVE-2018-15807

POSIM EVO 15.13 for Windows includes an "Emergency Override" administrative account that may be accessed through POSIM's "override" feature. This Override prompt expects a code that is computed locally using a deterministic algorithm. This code may be generated by an attacker and used to bypass any POSIM EVO login prompt.

CVSS Score

7.8

EPSS Score

0.001

Published

2018-08-23

CVE-2018-15808

POSIM EVO 15.13 for Windows includes hardcoded database credentials for the "root" database user. "root" access to POSIM EVO's database may result in a breach of confidentiality, integrity, or availability or allow for attackers to remotely execute code on associated POSIM EVO clients.

CVSS Score

9.8

EPSS Score

0.008

Published

2018-08-23

Page 1

Vulnerabilities

Vulnerable Software

Posim: >> Evo Security Vulnerabilities

Products

Pricing

Contact Us