CVE-2020-8657 - EyesOfNetwork Use of Hard-Coded Credentials Vulnerability
Project:EyesOfNetwork
Product:EyesOfNetwork
Date Added:2021-11-03Due Date:2022-05-03
Vulnerability Name
EyesOfNetwork Use of Hard-Coded Credentials Vulnerability
Description
EyesOfNetwork contains a use of hard-coded credentials vulnerability, as it uses the same API key by default. Exploitation allows an attacker to calculate or guess the admin access token.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2020-8657