PT-2018-11123 · Momentum · Momentum Axel 720P
Publicado
2018-06-13
·
Atualizado
2018-08-14
·
CVE-2018-12323
CVSS v2.0
7.2
Alta
| Vetor | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Momentum Axel 720P version 5.1.8
Description
An issue was discovered where a password is hard-coded for the root and admin accounts, making it easier for physically proximate attackers to login at the console. The hard-coded password is
EHLGVG.Recommendations
For Momentum Axel 720P version 5.1.8, consider changing the hard-coded password
EHLGVG for the root and admin accounts to a unique and secure password to prevent unauthorized access. As a temporary workaround, restrict physical access to the console to minimize the risk of exploitation.Exploit
Correção
Using Hardcoded Credentials
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Momentum Axel 720P