Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Toshiba Subscribe
Filtered by product Chec
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-4875 1 Toshiba 1 Chec 2015-06-24 5.0 MEDIUM N/A
CreateBossCredentials.jar in Toshiba CHEC before 6.6 build 4014 and 6.7 before build 4329 contains a hardcoded AES key, which allows attackers to discover Back Office System Server (BOSS) DB2 database credentials by leveraging knowledge of this key in conjunction with bossinfo.pro read access.