Hardcoded credentials

2018-06-1316:29:00

PRIOn knowledge base

www.prio-n.com

6.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.4%

JSON

An issue was discovered on Momentum Axel 720P 5.1.8 devices. A password of EHLGVG is hard-coded for the root and admin accounts, which makes it easier for physically proximate attackers to login at the console.

CPENameOperatorVersion
momentum_axel_720p_firmwareeq5.1.8

CPE	Name	Operator	Version
	momentum_axel_720p_firmware	eq	5.1.8

References

rchase.com/downloads/momentum-iot-penetration-test-report.pdf