CVE-2015-5998

Impero Education Pro < 5008 - Improper Authentication via Hardcoded Credential

Title source: llm
STIX 2.1

Description

Impero Education Pro before 5105 relies on the -1|AUTHENTICATE\x02PASSWORD string for authentication, which allows remote attackers to execute arbitrary programs via an encrypted command.

References (1)

Core 1
Core References
Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/549807

Scores

EPSS 0.0264
EPSS Percentile 83.7%

Details

CWE
CWE-287
Status published
Products (1)
impero/impero_education_pro < 5008
Published Sep 14, 2015
Tracked Since Feb 18, 2026