Remote Code Execution Vulnerability in Plixer Scrutinizer by Dell SonicWALL
CVE-2012-3951

Currently unrated

Key Information:

Vendor

Sonicwall
Status
Scrutinizer
Vendor
CVE Published:
31 July 2012

What is CVE-2012-3951?

The MySQL component within Plixer Scrutinizer allows for significant security risks due to the use of a default password, 'admin', for both the scrutinizer and scrutremote accounts. This flaw enables remote attackers to gain unauthorized access and execute arbitrary SQL commands, potentially compromising sensitive data and system integrity. The issue is present in version 9.0.1.19899 and earlier, highlighting the necessity for users to secure their databases by changing default credentials and applying updates promptly.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://www.trustwave.com/spiderlabs/advisories/TWSL2012-...
x_refsource_MISC
http://www.plixer.com/Press-Releases/plixer-releases-9-5-...
x_refsource_MISC

EPSS Score

79% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.