Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Fiserv Prologue through 2020-12-16 does not properly protect the database password. If an attacker were to gain access to the configuration file (specifically, the LogPassword attribute within appconfig.ini), they would be able to decrypt the password stored within the configuration file. This would yield cleartext credentials for the database (to gain access to financial records of customers stored within the database), and in some cases would allow remote login to the database.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Fiserv Prologue 安全漏洞
Vulnerability Description
Fiserv Prologue是用于简化财务会计流程并加快交付可提高绩效的可靠、可访问的信息的工具。 Fiserv Prologue 2020-12-16之前版本存在安全漏洞,该漏洞源于没有正确保护数据库密码,攻击者利用该漏洞可以解密存储在配置文件中的密码,并且在某些情况下将允许远程登录到数据库。
CVSS Information
N/A
Vulnerability Type
N/A