Default Credentials Vulnerability in Dell KACE K2000 System Deployment Appliance
CVE-2011-4048

Currently unrated

Key Information:

Vendor: Dell
Status: Kace K2000 Systems Deployment Appliance
Vendor: CVE Published:; 12 November 2011

Summary

The Dell KACE K2000 System Deployment Appliance exposes sensitive information due to a vulnerability that arises from the use of default credentials for its read-only reporting account. This weakness allows remote attackers to easily gain access to the database and extract confidential information. Users are encouraged to change the default credentials to enhance security and mitigate potential risks.

References

http://www.kb.cert.org/vuls/id/702169

third-party-advisoryx_refsource_CERT-VN

https://support.software.dell.com/k2000-systems-deploymen...

x_refsource_CONFIRM

Timeline

Vulnerability published
Nov 12, 2011
Vulnerability Reserved
Oct 13, 2011