PT-2019-11873 · Glory · Glory Rbw-100

Publicado

2019-04-05

Atualizado

2019-04-09

CVE-2019-10479

CVSS v2.0

Crítica

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Glory RBW-100 version 7.0.0

Description A hard-coded username and password were found, allowing a remote attacker to gain admin access to the Front Circle Controller web interface.

Recommendations For version 7.0.0, consider changing the hard-coded username and password to unique, secure credentials to prevent unauthorized access. As a temporary workaround, restrict access to the Front Circle Controller web interface until a patch is available.

Exploit

Correção

Using Hardcoded Credentials

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-798

Identificadores relacionados

CVE-2019-10479

Produtos afetados

Glory Rbw-100

PT-2019-11873 · Glory · Glory Rbw-100

CVE-2019-10479

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3