CVE-2025-10542
BaseFortify
Publication date: 2025-09-25
Last updated on: 2025-11-03
Assigner: SEC Consult Vulnerability Lab
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| imonitorsoft | eam | 9.6394 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-1392 | The product uses default credentials (such as passwords or cryptographic keys) for potentially critical functionality. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
iMonitor EAM 9.6394 includes default administrative credentials that are visible in the management client's connection dialog. If these default credentials are not changed by the administrator, a remote attacker can use them to authenticate to the EAM server. This allows the attacker to gain full control over all monitored agents and data, including the ability to read sensitive telemetry such as keylogger output and to issue arbitrary commands to all connected clients.
How can this vulnerability impact me? :
This vulnerability can allow a remote attacker to take full control of the EAM server and all connected clients. The attacker can access highly sensitive data, including keylogger outputs, and perform arbitrary actions on all monitored agents. This can lead to severe privacy breaches, data theft, unauthorized surveillance, and potential manipulation or disruption of client systems.
What immediate steps should I take to mitigate this vulnerability?
The immediate step to mitigate this vulnerability is to change the default administrative credentials on the iMonitor EAM 9.6394 server to strong, unique passwords. This prevents remote attackers from authenticating using the default credentials and gaining full control over monitored agents and data.