Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Insecure Default Admin Credentials Enable Full Administrative Access in iMonitor EAM
Vulnerability Description
iMonitor EAM 9.6394 ships with default administrative credentials that are also displayed within the management client’s connection dialog. If the administrator does not change these defaults, a remote attacker can authenticate to the EAM server and gain full control over monitored agents and data. This enables reading highly sensitive telemetry (including keylogger output) and issuing arbitrary actions to all connected clients.
CVSS Information
N/A
Vulnerability Type
CWE-1392
Vulnerability Title
iMonitor EAM 安全漏洞
Vulnerability Description
iMonitor EAM是美国iMonitor公司的一款员工电脑网络活动监控软件。 iMonitor EAM 9.6394版本存在安全漏洞,该漏洞源于使用默认管理凭据且未强制修改,可能导致远程攻击者完全控制监控代理和数据。
CVSS Information
N/A
Vulnerability Type
N/A