Hardcoded credentials

2023-07-2608:15:00

PRIOn knowledge base

www.prio-n.com

hardcoded credentials

fujitsu

real-time video transmission gear

ip series

vulnerability

unauthenticated attacker

firmware versions

nvd

7.5 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.9%

JSON

Fujitsu Real-time Video Transmission Gear “IP series” use hard-coded credentials, which may allow a remote unauthenticated attacker to initialize or reboot the products, and as a result, terminate the video transmission. Affected products and versions are as follows: IP-HE950E firmware versions V01L001 to V01L053, IP-HE950D firmware versions V01L001 to V01L053, IP-HE900E firmware versions V01L001 to V01L010, IP-HE900D firmware versions V01L001 to V01L004, IP-900E / IP-920E firmware versions V01L001 to V02L061, IP-900D / IP-900?D / IP-920D firmware versions V01L001 to V02L061, IP-90 firmware versions V01L001 to V01L013, and IP-9610 firmware versions V01L001 to V02L007.

CPENameOperatorVersion
ip-900d_firmwareeq>= v1l1 AND <= v2l61
ip-900e_firmwareeq>= v1l1 AND <= v2l61
ip-900iid_firmwareeq>= v1l1 AND <= v2l61
ip-90_firmwareeq>= v1l1 AND <= v1l13
ip-920d_firmwareeq>= v1l1 AND <= v2l61
ip-920e_firmwareeq>= v1l1 AND <= v2l61
ip-9610_firmwareeq>= v1l1 AND <= v2l7
ip-he900d_firmwareeq>= v1l1 AND <= v1l4
ip-he900e_firmwareeq>= v1l1 AND <= v1l10
ip-he950d_firmwareeq>= v1l1 AND <= v1l53

Name	Operator	Version
ip-900d_firmware	eq	>= v1l1 AND <= v2l61
ip-900e_firmware	eq	>= v1l1 AND <= v2l61
ip-900iid_firmware	eq	>= v1l1 AND <= v2l61
ip-90_firmware	eq	>= v1l1 AND <= v1l13
ip-920d_firmware	eq	>= v1l1 AND <= v2l61
ip-920e_firmware	eq	>= v1l1 AND <= v2l61
ip-9610_firmware	eq	>= v1l1 AND <= v2l7
ip-he900d_firmware	eq	>= v1l1 AND <= v1l4
ip-he900e_firmware	eq	>= v1l1 AND <= v1l10
ip-he950d_firmware	eq	>= v1l1 AND <= v1l53