CVE-2000-0434

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published May 13, 2000

Updated: Nov 20, 2024

Summary

CVE-2000-0434 is a vulnerability affecting the Allmanage web site administration software. This issue arises due to the administrative password being stored in plaintext in an accessible file. Attackers can exploit this vulnerability remotely, potentially gaining unauthorized access to the administrative functions of the affected software. The lack of encryption for the password increases the risk of unauthorized access, potentially leading to significant security consequences. This vulnerability underscores the importance of secure password storage and access control measures.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlbQL
https://www.cve.org/CVERecord?id=CVE-2000-0434
https://nvd.nist.gov/vuln/detail/CVE-2000-0434

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Stimmen aus Moskau: Russian Influence Operations Target German Elections

2024 Malicious Infrastructure Report

2024 Annual Report

Know What Matters

For Customers

For Partners

CVE-2000-0434

CVSS 2.0 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations