PT-2018-9009 · Neojapan · Denbun
Publicado
2018-11-15
·
Atualizado
2018-12-17
·
CVE-2018-0681
CVSS v3.1
9.8
Crítica
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Denbun by NEOJAPAN Inc. versions V3.3P R4.0 and earlier
Denbun by NEOJAPAN Inc. versions V3.3I R4.0 and earlier
Description
The issue allows remote attackers to login to the Management page and change the configuration due to the use of hard-coded credentials.
Recommendations
For Denbun by NEOJAPAN Inc. versions V3.3P R4.0 and earlier, consider changing the hard-coded credentials to unique and secure credentials.
For Denbun by NEOJAPAN Inc. versions V3.3I R4.0 and earlier, consider changing the hard-coded credentials to unique and secure credentials.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Using Hardcoded Credentials
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Denbun