CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
86.3%
Intellicom NetBiter WebSCADA devices use default passwords for the HICP network configuration service, which makes it easier for remote attackers to modify network settings and cause a denial of service. NOTE: this is only a vulnerability when the administrator does not follow recommendations in the product’s installation documentation. NOTE: this issue was originally reported to be hard-coded passwords, not default passwords.
Vendor | Product | Version | CPE |
---|---|---|---|
intellicom | netbiter_webscada_firmware | 3.11.0 | cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.11.0:*:*:*:*:*:*:* |
intellicom | netbiter_webscada_firmware | 3.11.1 | cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.11.1:*:*:*:*:*:*:* |
intellicom | netbiter_webscada_firmware | 3.11.2 | cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.11.2:*:*:*:*:*:*:* |
intellicom | netbiter_webscada_firmware | 3.12.4 | cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.12.4:*:*:*:*:*:*:* |
intellicom | netbiter_webscada_firmware | 3.12.6 | cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.12.6:*:*:*:*:*:*:* |
intellicom | netbiter_webscada_firmware | 3.13.0 | cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.13.0:beta:*:*:*:*:*:* |
intellicom | netbiter_webscada_firmware | 3.13.1 | cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.13.1:*:*:*:*:*:*:* |
intellicom | netbiter_webscada_firmware | 3.13.2 | cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.13.2:*:*:*:*:*:*:* |
intellicom | netbiter_webscada_firmware | 3.20.0 | cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.20.0:*:*:*:*:*:*:* |
intellicom | netbiter_webscada_firmware | 3.30.0 | cpe:2.3:h:intellicom:netbiter_webscada_firmware:3.30.0:*:*:*:*:*:*:* |