Lucene search
HistoryMay 01, 2023 - 2:15 p.m.
CVE-2023-0896
default password
lenovo smart clock
unauthorized access
local network
CVSS3
8.8
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.5
Confidence
High
EPSS
0.001
Percentile
21.8%
A default password was reported in Lenovo Smart Clock Essential with Alexa Built In that could allow unauthorized device access to an attacker with local network access.
Affected configurations
Node
lenovosmart_clock_essential_with_alexa_built_in_firmwareRange<90
lenovosmart_clock_essential_with_alexa_built_inMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| lenovo | smart_clock_essential_with_alexa_built_in_firmware | * | cpe:2.3:o:lenovo:smart_clock_essential_with_alexa_built_in_firmware:*:*:*:*:*:*:*:* |
| lenovo | smart_clock_essential_with_alexa_built_in | - | cpe:2.3:h:lenovo:smart_clock_essential_with_alexa_built_in:-:*:*:*:*:*:*:* |
Related
prion
prion
Default credentials
2023-05-01 14:15:00
cvelist
cvelist
CVE-2023-0896
2023-05-01 13:52:23
talosblog
talosblog
talos
talos
cve
cve
CVE-2023-0896
2023-05-01 14:15:09
CVSS3
8.8
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.5
Confidence
High
EPSS
0.001
Percentile
21.8%
Related for NVD:CVE-2023-0896