exploitDog

CVE-2015-0930

Опубликовано: 03 фев. 2015

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

The web interface on SerVision HVG Video Gateway devices with firmware before 2.2.26a100 has a hardcoded administrative password, which makes it easier for remote attackers to obtain access via an HTTP session.

Ссылки

http://www.kb.cert.org/vuls/id/522460
Third Party Advisory
US Government Resource
http://www.kb.cert.org/vuls/id/522460
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:servision:hvg_video_gateway_firmware:*:*:*:*:*:*:*:*

Версия до 2.2.26a100 (включая)

cpe:2.3:h:servision:hvg400:-:*:*:*:*:*:*:*

EPSS

Процентиль: 64%

0.00467

Низкий

10 Critical

CVSS2

Дефекты

CWE-255

Связанные уязвимости

GHSA-356h-vw92-46hh

github

больше 3 лет назад

The web interface on SerVision HVG Video Gateway devices with firmware before 2.2.26a100 has a hardcoded administrative password, which makes it easier for remote attackers to obtain access via an HTTP session.

EPSS

Процентиль: 64%

0.00467

Низкий

10 Critical

CVSS2

Дефекты

CWE-255