Hard-coded Credentials Vulnerability in COMPAREX Miss Marple Enterprise Edition

CVE-2018-19233 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

COMPAREX Miss Marple Enterprise Edition before 2.0 allows local users to execute arbitrary code by reading the user name and encrypted password hard-coded in an Inventory Agent configuration file.

Learn more about our User Device Pen Test.