CVE-2019-3947

Summary

Fuji Electric V-Server before 6.0.33.0 stores database credentials in project files as plaintext. An attacker that can gain access to the project file can recover the database credentials and gain access to the database server.

Affected Software

VendorProductVersion RangeStatus
n/aFuji Electric V-ServerVersions prior to 6.0.33.0affected

Weaknesses

  • Plaintext storage of credentials

ADP Enrichment

CVE Program Container

Additional References

References