Lucene search

MitreCVE-2010-2469

HistoryJun 25, 2010 - 9:30 p.m.

CVE-2010-2469

2010-06-2521:30:01

CWE-255

mitre

web.nvd.nist.gov

cve-2010-2469

default password

vulnerability

remote attackers

video recorder

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

Confidence

Low

EPSS

0.007

Percentile

81.0%

JSON

The Linear eMerge 50 and 5000 uses a default password of eMerge for the IEIeMerge account, which makes it easier for remote attackers to obtain Video Recorder data by establishing a session to the device.

Affected configurations

Nvd

Node

linearcorpemerge_50

linearcorpemerge_5000

VendorProductVersionCPE
linearcorpemerge_50*cpe:2.3:h:linearcorp:emerge_50:*:*:*:*:*:*:*:*
linearcorpemerge_5000*cpe:2.3:h:linearcorp:emerge_5000:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
linearcorp	emerge_50	*	cpe:2.3:h:linearcorp:emerge_50::::::::
linearcorp	emerge_5000	*	cpe:2.3:h:linearcorp:emerge_5000::::::::

References

blip.tv/file/3414004

www.darkreading.com/blog/archives/2010/04/attacking_door.html

www.securityinfowatch.com/Executives+Columns+%2526+Features/1316527?pageNum=2

www.slideshare.net/shawn_merdinger/we-dont-need-no-stinkin-badges-hacking-electronic-door-access-controllersquot-shawn-merdinger-carolinacon

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

Confidence

Low

EPSS

0.007

Percentile

81.0%

JSON

Related for CVE-2010-2469