Lucene search
TwcertCVELIST:CVE-2022-47618HistoryJan 03, 2023 - 12:00 a.m.
CVE-2022-47618 Merit Lilin Ent. Co., Ltd. AH55B04 & AH55B08 DVR - Hard-coded Credentials
2023-01-0300:00:00
CWE-798
twcert
www.cve.org
4
cve-2022-47618
merit lilin ent. co.
ltd.
ah55b04
ah55b08
dvr
hard-coded credentials
remote attacker
unauthenticated
administrator page
system manipulation
service disruption
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.7
Confidence
High
EPSS
0.004
Percentile
72.9%
Merit LILIN AH55B04 & AH55B08 DVR firm has hard-coded administrator credentials. An unauthenticated remote attacker can use these credentials to log in administrator page, to manipulate system or disrupt service.
CNA Affected
[
{
"vendor": "Merit Lilin Ent. Co., Ltd.",
"product": "AH55B04 DVR firmware",
"versions": [
{
"version": "unspecified",
"lessThanOrEqual": "SVN#7570",
"status": "affected",
"versionType": "custom"
}
]
},
{
"vendor": "Merit Lilin Ent. Co., Ltd.",
"product": "AH55B08 DVR firmware",
"versions": [
{
"version": "unspecified",
"lessThanOrEqual": "SVN#7570",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2022-47618
2023-01-03 03:15:10
prion
prion
Hardcoded credentials
2023-01-03 03:15:00
nvd
nvd
CVE-2022-47618
2023-01-03 03:15:10
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.7
Confidence
High
EPSS
0.004
Percentile
72.9%
Related for CVELIST:CVE-2022-47618