Vulnerability: Apache Axis2 Default Login

Apache Axis2, as used in dswsbobje.war in SAP BusinessObjects Enterprise XI 3.2, CA ARCserve D2D r15, and other products, has a default password of axis2 for the admin account, which makes it easier for remote attackers to execute arbitrary code by uploading a crafted web service.

Impact

Successful exploitation of this vulnerability can lead to unauthorized access to sensitive information or the ability to modify or delete data.

Severity

critical

Verified

Unknown