Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-17169

Malware in sbrugna...

10CVSS9.2AI score0.02095EPSS
Exploits0References3
NVD
NVD
added 2018/10/08 3:29 p.m.21 views

CVE-2018-5402

The Auto-Maskin DCU 210E, RP-210E, and Marine Pro Observer Android App use an embedded webserver that uses unencrypted plaintext for the transmission of the administrator PIN Impact: An attacker once authenticated can change configurations, upload new configuration files, and upload executable co...

9.1CVSS9.1AI score0.00883EPSS
Exploits0References2
NVD
NVD
added 2018/10/08 3:29 p.m.22 views

CVE-2018-5400

The Auto-Maskin products utilize an undocumented custom protocol to set up Modbus communications with other devices without validating those devices. The originating device sends a message in plaintext, 48:65:6c:6c:6f:20:57:6f:72:6c:64, "Hello World" over UDP ports 44444-44446 to the broadcast...

9.1CVSS9.2AI score0.00742EPSS
Exploits0References2
Prion
Prion
added 2018/10/08 3:29 p.m.19 views

Code injection

The Auto-Maskin products utilize an undocumented custom protocol to set up Modbus communications with other devices without validating those devices. The originating device sends a message in plaintext, 48:65:6c:6c:6f:20:57:6f:72:6c:64, "Hello World" over UDP ports 44444-44446 to the broadcast...

6.4CVSS9.1AI score0.00742EPSS
Exploits0References2
Prion
Prion
added 2018/10/08 3:29 p.m.27 views

Hardcoded credentials

The Auto-Maskin DCU 210E firmware contains an undocumented Dropbear SSH server, v2015.55, configured to listen on Port 22 while the DCU is running. The Dropbear server is configured with a hard-coded user name and password combination of root / amroot. The server is configured to use password onl...

10CVSS9.7AI score0.02095EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2018/10/08 3:0 p.m.90 views

CVE-2018-5401

CVE-2018-5401 affects Auto-Maskin DCU 210E, RP-210E and Marine Pro Observer Android App. The embedded systems transmit process control data in cleartext via unencrypted Modbus, allowing network-based observers to infer configurations, sensors in use, and related details. Affected: ARMv7 devices p...

9.1CVSS6.4AI score0.00868EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/10/08 3:0 p.m.72 views

CVE-2018-5399

CVE-2018-5399 affects Auto-Maskin DCU-210E RP-210E firmware (ARMv7) versions prior to 3.7. The firmware contains an undocumented Dropbear SSH server (v2015.55) listening on port 22 with hard-coded credentials (root / amroot) and password-only authentication, while an RSA host-key is present. This...

10CVSS9.6AI score0.02095EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2018/10/08 12:0 a.m.8 views

PT-2018-16943 · Auto Maskin +3 · Auto-Maskin Dcu-210E +3

Name of the Vulnerable Software and Affected Versions: Auto-Maskin DCU-210E RP-210E versions prior to 3.7 on ARMv7 Description: The firmware of the Auto-Maskin DCU 210E contains an undocumented Dropbear SSH server, version 2015.55, which listens on Port 22. This server is configured with a...

10CVSS6.9AI score0.93305EPSS
Exploits4References18
Rows per page
Query Builder