Natus NeuroWorks and SleepWorks before 8.4 GMA3 utilize a default password of xltek for the Microsoft SQL Server service sa account, allowing a threat actor to perform remote code execution, data exfiltration, or other nefarious actions such as tampering with data or destroying/disrupting MSSQL services.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-11-10T00:00:00

Updated: 2024-08-02T21:16:43.715Z

Reserved: 2023-11-10T00:00:00

Link: CVE-2023-47800

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-11-10T07:15:07.910

Modified: 2024-11-21T08:30:49.757

Link: CVE-2023-47800

cve-icon Redhat

No data.