PT-2018-9009 · Neojapan · Denbun
Published
2018-11-15
·
Updated
2018-12-17
·
CVE-2018-0681
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Denbun by NEOJAPAN Inc. versions V3.3P R4.0 and earlier
Denbun by NEOJAPAN Inc. versions V3.3I R4.0 and earlier
Description
The issue allows remote attackers to login to the Management page and change the configuration due to the use of hard-coded credentials.
Recommendations
For Denbun by NEOJAPAN Inc. versions V3.3P R4.0 and earlier, consider changing the hard-coded credentials to unique and secure credentials.
For Denbun by NEOJAPAN Inc. versions V3.3I R4.0 and earlier, consider changing the hard-coded credentials to unique and secure credentials.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Using Hardcoded Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Denbun