CVE-2019-19145
5.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
Summary
Quantum SuperLoader 3 V94.0 005E.0h devices allow attackers to access the hardcoded fa account because there are only 65536 possible passwords.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Quantum | SuperLoader | 3 V94.0 005E.0h | affected |
Weaknesses
- CWE-521: CWE-521 Weak Password Requirements
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://www.quantum.com/en/products/tape-storage/superloader-3/
- https://github.com/atredispartners/advisories/blob/master/ATREDIS-2019-0005.md
- https://www.dell.com/community/PowerVault/PowerVault-124T-Username-Password/td-p/3004075
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.