Wisconsin’s Workhorse Software Woes: Data Exposure Flaws Unleashed!
Municipalities in Wisconsin, hold onto your spreadsheets! CERT/CC discovered data exposure vulnerabilities in Workhorse Software’s pre-version 1.9.4.48019. With plaintext database details and unencrypted backups, data breaches could expose sensitive info. It’s time to update Workhorse Software before your town’s secrets become the talk of the virtual village.
Hot Take:
Another day, another security disaster in the land of municipal software! It seems the Workhorse Software forgot that leaving the keys to the city out in plaintext might not be the best idea. Who knew that ‘backup’ could also mean ‘backdoor’ for hackers? But hey, at least they patched it up before the cat got completely out of the bag. Time to gallop on over to version 1.9.4.48019 before the cyber bandits have their way with your data barn!
Key Points:
– CERT/CC disclosed two data exposure flaws in Workhorse Software’s municipal accounting application.
– Flaws were addressed before public disclosure, affecting software versions before 1.9.4.48019.
– Vulnerability CVE-2025-9037 involves plaintext database connection strings.
– Vulnerability CVE-2025-9040 allows unauthenticated creation of unencrypted database backups.
– CERT/CC recommends immediate software updates and additional security measures.