Lucene search
HistoryJul 04, 2023 - 12:15 a.m.
CVE-2023-22906
cve-2023-22906
hero qubo
telnet access
root privileges
default password
CVSS3
8.8
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
30.8%
Hero Qubo HCD01_02_V1.38_20220125 devices allow TELNET access with root privileges by default, without a password.
Affected configurations
Node
heroelectronixqubo_hcd01Match-
heroelectronixqubo_hcd01_firmwareMatch1.38_20220125
Node
heroelectronixqubo_hcd02Match-
heroelectronixqubo_hcd02_firmwareMatch1.38_20220125
| Vendor | Product | Version | CPE |
|---|---|---|---|
| heroelectronix | qubo_hcd01 | - | cpe:2.3:h:heroelectronix:qubo_hcd01:-:*:*:*:*:*:*:* |
| heroelectronix | qubo_hcd01_firmware | 1.38_20220125 | cpe:2.3:o:heroelectronix:qubo_hcd01_firmware:1.38_20220125:*:*:*:*:*:*:* |
| heroelectronix | qubo_hcd02 | - | cpe:2.3:h:heroelectronix:qubo_hcd02:-:*:*:*:*:*:*:* |
| heroelectronix | qubo_hcd02_firmware | 1.38_20220125 | cpe:2.3:o:heroelectronix:qubo_hcd02_firmware:1.38_20220125:*:*:*:*:*:*:* |
Related
githubexploit
githubexploit
cvelist
cvelist
CVE-2023-22906
2023-07-03 00:00:00
prion
prion
Default credentials
2023-07-04 00:15:00
cve
cve
CVE-2023-22906
2023-07-04 00:15:09
openvas
openvas
Unpassworded (Blank Password) 'root' Account (Telnet)
2019-05-24 00:00:00
CVSS3
8.8
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
30.8%
Related for NVD:CVE-2023-22906