2 matches found
Hardcoded credentials
The Bently Nevada 3700 series of condition monitoring equipment through 2022-04-29 has a maintenance interface on port 4001/TCP with undocumented, hardcoded credentials. An attacker capable of connecting to this interface can thus trivially take over its functionality...
CVE-2022-29953
The CVE-2022-29953 entry concerns the Bently Nevada 3700 series condition monitoring equipment. A maintenance interface on port 4001/TCP uses undocumented, hardcoded credentials, allowing an attacker who can reach the interface to take over its functionality. Affected products include Bently Neva...