CVE-2010-0219

critical Apache
CVSS v3 Base Score
10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS Score
93.4%
Exploitation probability in 30 days
Top 0% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Confidentiality
C
Integrity
C
Availability
C
Published: October 18, 2010 (5687 days ago)
Last Modified: April 29, 2026
Vendor: Apache
Source: NVD

Description

Apache Axis2, as used in dswsbobje.war in SAP BusinessObjects Enterprise XI 3.2, CA ARCserve D2D r15, and other products, has a default password of axis2 for the admin account, which makes it easier for remote attackers to execute arbitrary code by uploading a crafted web service.

CWE

CWE-255

Affected Products

apache axis2sap businessobjects

References

🔗 retrogod.altervista.org 🔗 secunia.com 🔗 secunia.com 🔗 spl0it.org 🔗 www.exploit-db.com