CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
80.7%
Dedicated Micros DV-IP Express, SD Advanced, SD, EcoSense, and DS2 devices rely on a GUI warning to help ensure that the administrator configures login credentials, which makes it easier for remote attackers to obtain access by leveraging situations in which this warning was not heeded. NOTE: the vendor states “The user is presented with clear warnings on the GUI that they should set usernames and passwords.”
Vendor | Product | Version | CPE |
---|---|---|---|
netvu | dv-ip_express_firmware | - | cpe:2.3:o:netvu:dv-ip_express_firmware:-:*:*:*:*:*:*:* |
netvu | dv-ip_express | - | cpe:2.3:h:netvu:dv-ip_express:-:*:*:*:*:*:*:* |
netvu | sd-advanced_-_sdhd_firmware | - | cpe:2.3:o:netvu:sd-advanced_-_sdhd_firmware:-:*:*:*:*:*:*:* |
netvu | sd-advanced_-_sdhd | * | cpe:2.3:h:netvu:sd-advanced_-_sdhd:*:*:*:*:*:*:*:* |
netvu | sd-advanced_8\/12\/16_vga_firmware | - | cpe:2.3:o:netvu:sd-advanced_8\/12\/16_vga_firmware:-:*:*:*:*:*:*:* |
netvu | sd-advanced_8\/12\/16_vga | - | cpe:2.3:h:netvu:sd-advanced_8\/12\/16_vga:-:*:*:*:*:*:*:* |
netvu | sd_advanced_closed_iptv_\(m3u\)_firmware | - | cpe:2.3:o:netvu:sd_advanced_closed_iptv_\(m3u\)_firmware:-:*:*:*:*:*:*:* |
netvu | sd_advanced_closed_iptv_\(m3u\) | - | cpe:2.3:h:netvu:sd_advanced_closed_iptv_\(m3u\):-:*:*:*:*:*:*:* |
netvu | sd_advanced_non_closed_iptv_\(m3u\)_firmware | - | cpe:2.3:o:netvu:sd_advanced_non_closed_iptv_\(m3u\)_firmware:-:*:*:*:*:*:*:* |
netvu | sd_advanced_non_closed_iptv_\(m3u\) | - | cpe:2.3:h:netvu:sd_advanced_non_closed_iptv_\(m3u\):-:*:*:*:*:*:*:* |
[
{
"product": "DV-IP Express",
"vendor": "Dedicated Micros",
"versions": [
{
"status": "affected",
"version": "unknown"
}
]
},
{
"product": "SD Advanced",
"vendor": "Dedicated Micros",
"versions": [
{
"status": "affected",
"version": "unknown"
}
]
},
{
"product": "SD",
"vendor": "Dedicated Micros",
"versions": [
{
"status": "affected",
"version": "unknown"
}
]
},
{
"product": "EcoSense",
"vendor": "Dedicated Micros",
"versions": [
{
"status": "affected",
"version": "unknown"
}
]
},
{
"product": "DS2",
"vendor": "Dedicated Micros",
"versions": [
{
"status": "affected",
"version": "unknown"
}
]
}
]
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
80.7%