Enabled default credentials
Description
It is possible to use low-strength, default credentials to access system resources, such as the database.
Impact
Obtain unauthorized access to resources or services with public credentials
Recommendation
Eliminate the credentials from the storage manager to avoid login attempts with those.
Threat
Anonymous attacker from the Internet.
Expected Remediation Time
⏱️ 15 minutes.
Requirements
142 - Change system default credentialsScore
Default score using CVSS 4.0. It may change depending on the context of the src.
Base 4.0
Attack vector
A
Attack complexity
L
Attack requirements
N
Privileges required
N
User interaction
N
Confidentiality (VC)
H
Integrity (VI)
N
Availability (VA)
N
Confidentiality (SC)
N
Integrity (SI)
N
Availability (SA)
N
Threat 4.0
Exploit maturity
X
Vector string
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N