Unrated severityNVD Advisory· Published May 21, 2020· Updated Aug 4, 2024
C•CURE 9000 and victor Video Management System - Cleartext storage of user credentials upon installation or upgrade of software.
CVE-2020-9045
Description
During installation or upgrade to Software House C•CURE 9000 v2.70 and American Dynamics victor Video Management System v5.2, the credentials of the user used to perform the installation or upgrade are logged in a file. The install log file persists after the installation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- Range: = 5.2
- Range: = 2.70
- Johnson Controls/American Dynamics victor Video Management System v5.2v5Range: 5.2
- Range: 2.70
Patches
Vulnerability mechanics
References
2- www.us-cert.gov/ics/advisories/ICSA-20-142-01mitrethird-party-advisoryx_refsource_CERT
- www.johnsoncontrols.com/cyber-solutions/security-advisoriesmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.