Impero » Impero Education Pro : Security Vulnerabilities, CVEs,
Impero Education Pro before 5105 relies on the -1|AUTHENTICATE\x02PASSWORD string for authentication, which allows remote attackers to execute arbitrary programs via an encrypted command.
Max CVSS
10.0
EPSS Score
0.45%
Published
2015-09-14
Updated
2015-09-16
Impero Education Pro before 5105 uses a hardcoded CBC key and initialization vector derived from a hash of the Imp3ro string, which makes it easier for remote attackers to obtain plaintext data by sniffing the network for ciphertext data.
Max CVSS
7.8
EPSS Score
0.62%
Published
2015-09-14
Updated
2015-09-16
2 vulnerabilities found