Impero: >> Impero Education Pro Security Vulnerabilities
Impero Education Pro before 5105 relies on the -1|AUTHENTICATE\x02PASSWORD string for authentication, which allows remote attackers to execute arbitrary programs via an encrypted command.
CVSS Score
10.0
EPSS Score
0.005
Published
2015-09-14
Impero Education Pro before 5105 uses a hardcoded CBC key and initialization vector derived from a hash of the Imp3ro string, which makes it easier for remote attackers to obtain plaintext data by sniffing the network for ciphertext data.
CVSS Score
7.8
EPSS Score
0.005
Published
2015-09-14