Описание
The Relish (Verve Connect) VH510 device with firmware before 1.0.1.6L0516 contains undocumented default admin credentials for the web management interface. A remote attacker could exploit this vulnerability to login and execute commands on the device, as well as upgrade the firmware image to a malicious version.
Ссылки
- Third Party Advisory
- ExploitThird Party Advisory
- Third Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.0.1.6l0516 (исключая)
Одновременно
cpe:2.3:o:imomobile:verve_connect_vh510_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:imomobile:verve_connect_vh510:l0am095a:*:*:*:*:*:*:*
EPSS
Процентиль: 81%
0.01564
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-798
Связанные уязвимости
github
больше 3 лет назад
The Relish (Verve Connect) VH510 device with firmware before 1.0.1.6L0516 contains undocumented default admin credentials for the web management interface. A remote attacker could exploit this vulnerability to login and execute commands on the device, as well as upgrade the firmware image to a malicious version.
EPSS
Процентиль: 81%
0.01564
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-798