Description
The password for the administrative interface of the Lucee web application is not configured. An unauthenticated attacker can log into the administrative interface and compromise the system.
Remediation
Set the password for the administrative interfaces
References
Related Vulnerabilities
Remote code execution of user-provided local names in Rails
Drupal Remote Code Execution (SA-CORE-2018-002)
PrestaShop Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-15081)
Oracle WebLogic Remote Code Execution (CVE-2020-14882)
WordPress Plugin Customer Reviews for WooCommerce Multiple Vulnerabilities (5.3.5)