Sign-up

ID

VAR-201810-1475


TITLE

Beijing Jiekong FameView configuration software has weak password vulnerability

Trust: 0.6

sources: CNVD: CNVD-2018-21993

DESCRIPTION

FameView configuration software is a high-performance configuration monitoring software company independently developed by Beijing Jiekong Company, which is a collection of years of engineering application and service experience based on Windows operating system. There is a weak password vulnerability in Beijing Jiekong FameView configuration software. Attackers can log in to the system with weak passwords and start and stop tasks at will

Trust: 0.72

sources: CNVD: CNVD-2018-21993 // IVD: 7d847ef1-463f-11e9-84b3-000c29342cb1

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: 7d847ef1-463f-11e9-84b3-000c29342cb1 // CNVD: CNVD-2018-21993

AFFECTED PRODUCTS

vendor:jiekongmodel:fameview configuration softwarescope:eqversion:v7.6.12.6

Trust: 0.8

sources: IVD: 7d847ef1-463f-11e9-84b3-000c29342cb1 // CNVD: CNVD-2018-21993

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2018-21993
value: LOW

Trust: 0.6

IVD: 7d847ef1-463f-11e9-84b3-000c29342cb1
value: LOW

Trust: 0.2

CNVD: CNVD-2018-21993
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: 7d847ef1-463f-11e9-84b3-000c29342cb1
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

sources: IVD: 7d847ef1-463f-11e9-84b3-000c29342cb1 // CNVD: CNVD-2018-21993

TYPE

Access verification error

Trust: 0.2

sources: IVD: 7d847ef1-463f-11e9-84b3-000c29342cb1

PATCH

title:Beijing Jiekong FameView configuration software has weak password vulnerabilityurl:https://www.cnvd.org.cn/patchinfo/show/142935

Trust: 0.6

sources: CNVD: CNVD-2018-21993

EXTERNAL IDS

db:CNVDid:CNVD-2018-21993

Trust: 0.8

db:IVDid:7D847EF1-463F-11E9-84B3-000C29342CB1

Trust: 0.2

sources: IVD: 7d847ef1-463f-11e9-84b3-000c29342cb1 // CNVD: CNVD-2018-21993

SOURCES

db:IVDid:7d847ef1-463f-11e9-84b3-000c29342cb1
db:CNVDid:CNVD-2018-21993

LAST UPDATE DATE

2022-05-17T02:07:04.261000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2018-21993date:2019-01-11T00:00:00

SOURCES RELEASE DATE

db:IVDid:7d847ef1-463f-11e9-84b3-000c29342cb1date:2018-10-29T00:00:00
db:CNVDid:CNVD-2018-21993date:2018-12-07T00:00:00