PT-2019-10391 · Swann · Swwhd-Intcam-Hd

Alan Woodward

Published

2019-08-08

Updated

2021-08-24

CVE-2018-20955

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Swann SWWHD-INTCAM-HD devices (affected versions not specified)

Description The issue allows for FTP access as root due to the presence of the twipc root password. It is noted that all affected customers were migrated by 2020-08-31.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-798

Related Identifiers

CVE-2018-20955

Affected Products

Swwhd-Intcam-Hd

PT-2019-10391 · Swann · Swwhd-Intcam-Hd

CVE-2018-20955

Weakness Enumeration

Related Identifiers

Affected Products

References · 4