PT-2015-7505 · Csl · Csl Dualcom Gprs Cs2300-R
Andrew Tierney
·
Published
2015-11-25
·
Updated
2015-11-25
·
CVE-2015-7287
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
CSL DualCom GPRS CS2300-R devices versions 1.25 through 3.53
Description
The issue allows remote attackers to execute commands on the device by leveraging knowledge of the default PIN and including it in an SMS message. The default PIN
001984 is used across different customers' installations.Recommendations
For versions 1.25 through 3.53, change the default PIN
001984 to a unique and secure PIN to prevent unauthorized access.Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Csl Dualcom Gprs Cs2300-R