Lucene search
HistoryJul 14, 2014 - 9:55 p.m.
CVE-2014-2951
cve-2014-2951
datum systems
snip
psm-500
psm-4500
hardcoded password
admin account
remote attackers
access
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.1 High
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
75.2%
Datum Systems SnIP on PSM-500 and PSM-4500 devices has a hardcoded password of admin for the admin account, which makes it easier for remote attackers to obtain access via unspecified vectors.
Affected configurations
Node
datumsystemssnipMatch-psm-4500
ORdatumsystemssnipMatch-psm-500
| CPE | Name | Operator | Version |
|---|---|---|---|
| datumsystems:snip | datumsystems snip | eq | - |
References
Related
cvelist
cvelist
CVE-2014-2951
2014-07-14 21:00:00
nvd
nvd
CVE-2014-2951
2014-07-14 21:55:05
prion
prion
Hardcoded credentials
2014-07-14 21:55:00
openvas
openvas
Datum Systems Satellite Modem Multiple Vulnerabilities
2014-07-30 00:00:00
cert
cert
Datum Systems satellite modem devices contain multiple vulnerabilities
2014-07-11 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.1 High
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
75.2%
Related for CVE-2014-2951