Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2023-28654
HistoryMar 28, 2023 - 9:15 p.m.

Hardcoded credentials

2023-03-2821:15:00
PRIOn knowledge base
www.prio-n.com
6
hardcoded credentials
web management interface
nvd
full access

9.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

54.2%

JSON

Osprey Pump Controller version 1.01 has a hidden administrative account that has the hardcoded password that allows full access to the web management interface configuration. The user is not visible in Usernames and Passwords menu list of the application and the password cannot be changed through any normal operation of the device.

CPENameOperatorVersion
osprey_pump_controller_firmwareeq1.01

Related

nvd 1
cve 1
zeroscience 1
cvelist 1
ics 1
nvd
nvd
CVE-2023-28654
2023-03-28 21:15:11
cve
cve
CVE-2023-28654
2023-03-28 21:15:11
zeroscience
zeroscience
Osprey Pump Controller 1.0.1 Administrator Backdoor Access
2023-02-27 00:00:00
cvelist
cvelist
CVE-2023-28654 CVE-2023-28654
2023-03-28 20:03:03
ics
ics
ProPump and Controls Osprey Pump Controller (Update A)
2024-02-08 12:00:00

9.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

54.2%

JSON
Related for PRION:CVE-2023-28654
nvd1cve1zeroscience1cvelist1ics1