PT-2026-7922 · Heatmiser · Heatmiser Netmonitor
Ismail Tasdelen
·
Publicado
2026-02-12
·
Atualizado
2026-02-12
·
CVE-2019-25322
CVSS v3.1
7.5
Alta
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Heatmiser Netmonitor version 3.03
Description
The software contains hardcoded credentials, specifically a predictable username and password for administrative access. An attacker can gain access to the device by using the username 'admin' and password 'admin' within the hidden form input fields of the 'networkSetup.htm' page.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Using Hardcoded Credentials
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Heatmiser Netmonitor