1. Home
  2. CVE Database
  3. CVE-2021-42833
CRITICAL · 9.3

CVE-2021-42833

A Use of Hardcoded Credentials vulnerability exists in AquaView versions 1.60, 7.x, and 8.x that could allow an authenticated local attacker to manipulate users and system settings.

Vulnerability Description

A Use of Hardcoded Credentials vulnerability exists in AquaView versions 1.60, 7.x, and 8.x that could allow an authenticated local attacker to manipulate users and system settings.

CVSS Score

9.3

CRITICAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
XylemAquaview>= 7.0.0, < 8.0.1

Related Weaknesses (CWE)

CWE-798

References

FAQ

What is CVE-2021-42833?

CVE-2021-42833 is a vulnerability with a CVSS score of 9.3 (CRITICAL). A Use of Hardcoded Credentials vulnerability exists in AquaView versions 1.60, 7.x, and 8.x that could allow an authenticated local attacker to manipulate users and system settings.

How severe is CVE-2021-42833?

CVE-2021-42833 has been rated CRITICAL with a CVSS base score of 9.3/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2021-42833?

Check the references section above for vendor advisories and patch information. Affected products include: Xylem Aquaview.