CVE-2010-4279

CVE-2010-4279 is a critical-severity vulnerability in Artica Pandora Fms with a CVSS 2.0 base score of 10.0. Its EPSS exploit-prediction score of 66% places it in the 99th percentile, indicating an elevated likelihood of exploitation. The underlying weakness is classified as CWE-287.

Key facts

Description

The default configuration of Pandora FMS 3.1 and earlier specifies an empty string for the loginhash_pwd field, which allows remote attackers to bypass authentication by sending a request to index.php with "admin" in the loginhash_user parameter, in conjunction with the md5 hash of "admin" in the loginhash_data parameter.

Frequently asked questions

What is CVE-2010-4279?
The default configuration of Pandora FMS 3.1 and earlier specifies an empty string for the loginhash_pwd field, which allows remote attackers to bypass authentication by sending a request to index.php with "admin" in the loginhash_user parameter, in conjunction with the md5 hash of "admin" in the loginhash_data parameter.
How severe is CVE-2010-4279?
CVE-2010-4279 has a CVSS 2.0 base score of 10.0, rated critical severity.
Is CVE-2010-4279 being actively exploited?
It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 66% (99th percentile), an estimate of the probability of exploitation in the next 30 days.
What products are affected by CVE-2010-4279?
CVE-2010-4279 primarily affects Artica Pandora Fms. In total, 16 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
How do I fix CVE-2010-4279?
Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its critical severity, prioritise patching exposed systems.
When was CVE-2010-4279 published?
CVE-2010-4279 was published on 2010-12-02 and last updated on 2026-06-16.

References

Affected products (16)

More vulnerabilities in Artica Pandora Fms

All CVEs affecting Artica Pandora Fms →

Other CWE-287 (Improper Authentication) vulnerabilities

Browse all CWE-287 (Improper Authentication) vulnerabilities →