Lucene search

PRIOn knowledge basePRION:CVE-2023-25184

HistoryMay 10, 2023 - 6:15 a.m.

Default credentials

2023-05-1006:15:00

PRIOn knowledge base

www.prio-n.com

default credentials

weak password

seiko solutions skybridge

seiko solutions skyspider

remote attacker

unauthenticated access

webui decryption

nvd

vulnerability

firmware versions

8.1 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.8%

JSON

Use of weak credentials exists in Seiko Solutions SkyBridge and SkySpider series, which may allow a remote unauthenticated attacker to decrypt password for the WebUI of the product. Affected products and versions are as follows: SkyBridge MB-A200 firmware Ver. 01.00.05 and earlier, SkyBridge BASIC MB-A130 firmware Ver. 1.4.1 and earlier, and SkySpider MB-R210 firmware Ver. 1.01.00 and earlier.

CPENameOperatorVersion
skybridge_basic_mb-a130_firmwarele1.4.1
skybridge_mb-a200_firmwarele01.00.05
skyspider_mb-r210_firmwarele1.01.00

Name	Operator	Version
skybridge_basic_mb-a130_firmware	le	1.4.1
skybridge_mb-a200_firmware	le	01.00.05
skyspider_mb-r210_firmware	le	1.01.00

References

jvn.jp/en/jp/JVN40604023/

www.seiko-sol.co.jp/archives/73969/

www.seiko-sol.co.jp/products/skybridge/skybridge_download/mb-a100/

www.seiko-sol.co.jp/products/skybridge/skybridge_download/mb-a130/

www.seiko-sol.co.jp/products/skybridge/skybridge_download/mb-a200/

www.seiko-sol.co.jp/products/skyspider/skyspider_download/mb-r210/