All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2021-44207
NONEKEVpublish date unavailable
CVSS / 10
// description
Acclaim Systems USAHERDS contains a hard-coded credentials vulnerability that could allow an attacker to achieve remote code execution on the system that runs the application. The MachineKey must be obtained via a separate vulnerability or other channel.
// required action (CISA KEV)
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. Please contact the product developer for support and vulnerability mitigation.
added 2024-12-23 00:00 UTC