TitanHQ WebTitan before 5.18 Use of Hard-coded Credentials Vulnerability

Summary

An issue was discovered in TitanHQ WebTitan before 5.18.

Credit:

The information has been provided by Vendor

The original article can be found at:https://www.webtitan.com/resources/product-updates/


Details

It has a hidden support account (with a hard-coded password) in the web administration interface, with administrator privileges. Anybody can log in with this account.

 

Vulnerable Systems:

TitanHQ WebTitan before 5.18

 

CVE Information:

CVE-2019-19021

 

Disclosure Timeline:
Published Date:12/2/2019

Categories: FeaturedNews