Unrated severityNVD Advisory· Published Jun 8, 2015· Updated Jun 17, 2026
CVE-2015-3001
CVE-2015-3001
Description
SysAid Help Desk before 15.2 uses a hardcoded password of Password1 for the sa SQL Server Express user account, which allows remote authenticated users to bypass intended access restrictions by leveraging knowledge of this password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <15.2
Patches
Vulnerability mechanics
References
5- packetstormsecurity.com/files/132138/SysAid-Help-Desk-14.4-Code-Execution-Denial-Of-Service-Traversal-SQL-Injection.htmlnvdExploit
- seclists.org/fulldisclosure/2015/Jun/8nvdExploit
- www.sysaid.com/blog/entry/sysaid-15-2-your-voice-your-service-desknvdVendor Advisory
- www.securityfocus.com/archive/1/535679/100/0/threadednvd
- www.securityfocus.com/bid/75035nvd
News mentions
0No linked articles in our index yet.