Description
VDG Security SENSE (formerly DIVA) 2.3.13 has a hardcoded password of (1) ArpaRomaWi for the root Postgres account and !DVService for the (2) postgres and (3) NTP Windows user accounts, which allows remote attackers to obtain access.
References (3)
Core 3
Core References
Exploit mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2014/Dec/76
Scores
EPSS
0.0229
EPSS Percentile
81.1%
Details
CWE
CWE-200
Status
published
Products (1)
vdgsecurity/vdg_sense
2.3.13
Published
Jan 08, 2015
Tracked Since
Feb 18, 2026