A vulnerability in Cisco Prime Collaboration Provisioning (PCP) Software could allow an unauthenticated, local attacker to log in to the underlying Linux operating system.
The vulnerability is due to a hard-coded account password on the system.
A search online lead me to a discovery I didnrsquo;t think was possible nowadays. I realized almost immediately that critical security issues were probably involved. I found that out of the many tens of thousands of gas stations the company claimed to have installed their product in, 1,000 are remotely hackable.
DAILY VIDEO: Cryptocurrency mining operations take aim at SSH servers; Microsoft is investigating a problematic Meltdown patch on AMD PCs; Broadcom turns its focus to shareholders in its bid for Qualcomm; and there's more.
North Korea allegedly is now mounting cryptocurrency miner operations, attackers are going after vulnerable SSH servers and the popular Electrum cryptocurrency wallet patches for a critical vulnerability.
CVSS base score
The kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices withi...