CVE-2013-2342
HP StoreOnce D2D < 3.0.0 - Unauthenticated Administrative Access via Default HPSupport Credentials
Title source: llmDescription
The HP StoreOnce D2D backup system with software before 3.0.0 has a default password of badg3r5 for the HPSupport account, which allows remote attackers to obtain administrative access and delete data via an SSH session.
References (2)
Core 2
Core References
Various Sources x_refsource_misc
http://www.lolware.net/hpstorage.html
Vendor Advisory vendor-advisory
x_refsource_hp
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03813919
Scores
EPSS
0.0012
EPSS Percentile
30.3%
Details
CWE
CWE-255
Status
published
Products (7)
hp/storeonce_d2d
2.1.01
hp/storeonce_d2d
2.2.00
hp/storeonce_d2d
2.2.10
hp/storeonce_d2d
2.2.13
hp/storeonce_d2d
2.2.14
hp/storeonce_d2d
2.2.16
hp/storeonce_d2d
< 2.2.17
Published
Jun 30, 2013
Tracked Since
Feb 18, 2026