Default Password Vulnerability in APC Web/SNMP Management SmartSlot Card
CVE-2004-0311

Currently unrated

Key Information:

Vendor: Apc
Status: Ap9606
Vendor: CVE Published:; 23 November 2004

What is CVE-2004-0311?

The Web/SNMP Management SmartSlot Card from American Power Conversion is susceptible to a security vulnerability due to the presence of a hardcoded default password, TENmanUFactOryPOWER. This allows remote attackers to gain unauthorized access to the device, potentially leading to the manipulation of configurations or the interpretation of sensitive data. Users are advised to change default credentials immediately to mitigate risks associated with this vulnerability.

References

http://www.securityfocus.com/bid/9681

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/15238

vdb-entryx_refsource_XF

http://marc.info/?l=bugtraq&m=107703696631367&w=2

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 23, 2004
Vulnerability Reserved
Mar 17, 2004

CVE-2004-0311 Data

JSON

Apc

What is CVE-2004-0311?

References

Timeline