CVE-2021-41296

🗓️ 30 Sep 2021 10:40:58Reported by twcertType

Weak default administrative credentials on ECOA BAS controller

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2021-41296	30 Sep 202114:37	–	circl
CNNVD	Ecoa Bas controller 安全漏洞	30 Sep 202100:00	–	cnnvd
CNVD	ECOA BAS controller weak password vulnerability	8 Oct 202100:00	–	cnvd
Cvelist	CVE-2021-41296 ECOA BAS controller - Weak Password Requirements	30 Sep 202110:40	–	cvelist
EUVD	EUVD-2021-28326	3 Oct 202520:07	–	euvd
NVD	CVE-2021-41296	30 Sep 202111:15	–	nvd
Prion	Default credentials	30 Sep 202111:15	–	prion
Zero Science Lab	ECOA Building Automation System Weak Default Credentials	8 Sep 202100:00	–	zeroscience

NVD

Node

ecoa ecs_router_controller-ecs_firmwareMatch-

AND

ecoa ecs_router_controller-ecsMatch-

Node

ecoa riskbuster_firmwareMatch-

AND

ecoa riskbusterMatch-

Node

ecoa riskterminatorMatch-

[
  {
    "product": "ECS Router Controller ECS (FLASH)",
    "vendor": "ECOA",
    "versions": [
      {
        "lessThan": "unspecified",
        "status": "unknown",
        "version": "next of 0",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "RiskBuster Terminator E6L45",
    "vendor": "ECOA",
    "versions": [
      {
        "lessThan": "unspecified",
        "status": "unknown",
        "version": "next of 0",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "RiskBuster System RB 3.0.0",
    "vendor": "ECOA",
    "versions": [
      {
        "lessThan": "unspecified",
        "status": "unknown",
        "version": "next of 0",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "RiskBuster System TRANE 1.0",
    "vendor": "ECOA",
    "versions": [
      {
        "lessThan": "unspecified",
        "status": "unknown",
        "version": "next of 0",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Graphic Control Software",
    "vendor": "ECOA",
    "versions": [
      {
        "lessThan": "unspecified",
        "status": "unknown",
        "version": "next of 0",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "SmartHome II E9246",
    "vendor": "ECOA",
    "versions": [
      {
        "lessThan": "unspecified",
        "status": "unknown",
        "version": "next of 0",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "RiskTerminator",
    "vendor": "ECOA",
    "versions": [
      {
        "lessThan": "unspecified",
        "status": "unknown",
        "version": "next of 0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
twcert	www.twcert.org.tw/tw/cp-132-5132-65705-1.html

21 Nov 2024 06:25Current

9.8High risk

Vulners AI Score9.8

CVSS 25

CVSS 3.19.8

EPSS0.00229

CWE-521