PT-2021-9035 · Unknown · Tk-Star Q90 Junior Gps
Published
2021-02-01
·
Updated
2024-08-08
·
CVE-2019-20471
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
TK-Star Q90 Junior GPS horloge version 3.1042.9.8656
Description
A security issue was found in the initial setup of the device, where a default password
123456 is used for administrative purposes without prompting the user to change it. This default password can be exploited.Recommendations
For version 3.1042.9.8656, change the default administrative password
123456 to a strong and unique password as soon as possible after initial setup to prevent potential exploitation.Fix
Using Hardcoded Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Tk-Star Q90 Junior Gps