CVE-2019-3947

Fuji Electric V-Server before 6.0.33.0 stores database credentials in project files as plaintext. An attacker that can gain access to the project file can recover the database credentials and gain access to the database server.

Published : 2019-06-12 15:29 Updated : 2019-06-13 12:29

5.0
CVSS Score More info
Score 5.0 / 10
5.0
Vendor Product Version URI
Fujielectric V-server 3.3.22.0 cpe:/a:fujielectric:v-server:3.3.22.0
Fujielectric V-server 4.0.3.0 cpe:/a:fujielectric:v-server:4.0.3.0::~~lite~~~
  1. Fujielectric (1) Search CVE
    1. V-server (2) Search CVE
      1. 3.3.22.0
      2. 4.0.3.0

CWE

ID Name Description Links
CWE-255 Credentials Management Weaknesses in this category are related to the management of credentials. CVE

History of changes

Date Event
2019-06-13 12:29
2019-06-12 18:35
2019-06-12 15:29

New CVE