PT-2023-19888 · Birddog · 4K Quad+7

Alan Cao

·

Publicado

2023-05-22

·

Atualizado

2023-05-31

·

CVE-2023-2504

CVSS v3.1

9.8

Crítica

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned in the provided descriptions.
Description Files present on firmware images could allow an attacker to gain unauthorized access as a root user using hard-coded credentials.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Using Hardcoded Credentials

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-798

Identificadores relacionados

CVE-2023-2504

Produtos afetados

4K Quad
4K Quad Firmware
A300 Eyes
Mini
Studio R3
A300 Firmware
Mini Firmware
Studio R3 Firmware