CVE-2019-10979

SICK MSC800 all versions prior to Version 4.0, the affected firmware versions contain a hard-coded customer account password...

CVE-2019-10979

SICK MSC800 all versions prior to Version 4.0, the affected firmware versions contain a hard-coded customer account password...

Hardcoded credentials

SICK MSC800 all versions prior to Version 4.0, the affected firmware versions contain a hard-coded customer account password...

CVE-2019-10979

CVE-2019-10979 affects SICK MSC800 firmware all versions prior to 4.0. The vulnerability is caused by a hard-coded customer account password, enabling a remote attacker with network access to potentially reconfigure settings or disrupt device functionality. CVSSv3 base score 9.8 (CRITICAL); attac...

CVE-2019-10979

SICK MSC800 all versions prior to Version 4.0, the affected firmware versions contain a hard-coded customer account password...

CVE-2019-7279

Optergy Proton/Enterprise devices have Hard-coded Credentials...

CVE-2019-7279

Optergy Proton/Enterprise devices have Hard-coded Credentials...

CVE-2019-7279

Optergy Proton/Enterprise devices have Hard-coded Credentials...

CVE-2019-7279

Optergy Proton/Enterprise devices are affected by CVE-2019-7279, which involves hard-coded credentials in the system. The issue impacts Proton/Enterprise software (versions 2.3.0a and earlier) and is identified as Use of Hard-Coded Credentials (CWE-798). The NVD entry assigns CVSSv3 base score 7....

FaceSentry Access Control System 6.4.8 - Remote SSH Root

!/usr/bin/env python -- coding: utf-8 -- FaceSentry Access Control System 6.4.8 Remote SSH Root Access Exploit Vendor: iWT Ltd. Product web page: http://www.iwt.com.hk Affected version: Firmware 6.4.8 build 264 Algorithm A16 Firmware 5.7.2 build 568 Algorithm A14 Firmware 5.7.0 build 539 Algorith...

ABB CP651 HMI

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable from adjacent network/low skill level to exploit Vendor: ABB Equipment: CP651 HMI Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to prevent legitimate...

ABB CP635 HMI

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable from adjacent network/low skill level to exploit Vendor: ABB Equipment: CP635 HMI Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to prevent legitimate...

ABB PB610 Panel Builder 600

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Low skill level to exploit Vendor: ABB Equipment: PB610 Panel Builder 600 Vulnerabilities: Use of Hard-coded Credentials, Improper Authentication, Relative Path Traversal, Improper Input Validation, Stack-based Buffer Overflow 2. RISK EVALUATION An...

SICK MSC800

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: SICK Equipment: MSC800 Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a low-skilled remote attacker to reconfigure...

MSC800 affected by hard-coded credentials vulnerability

The ICS-CERT reported a security vulnerability that affects MSC800 versions before 4.0. The MSC800 uses hard-coded credentials, which potentially allow low-skilled remote attackers to reconfigure settings and /or disrupt the functionality of the device. Currently SICK is not aware of any public...

Shenzhen Cylan Technology Clever Dog Smart Camera DOG-2W and DOG-2W-V4 Trust Management Issue Vulnerability

Shenzhen Cylan Technology Clever Dog Smart Camera DOG-2W and Shenzhen Cylan Technology Clever Dog Smart Camera DOG-2W-V4 are both a smart camera from China's Cylan Technology Shenzhen Cylan. Technology are both smart cameras from Shenzhen Cylan Technology. A security vulnerability exists in the...

CVE-2019-11479

Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. A remote attacker could use this to cause a denial of service. This has been fixed in stable kerne...

Hardcoded credentials

Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. A remote attacker could use this to cause a denial of service. This has been fixed in stable kerne...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2019-4686)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-4686 advisory. - tcp: enforce tcpminsndmss in tcpmtuprobing Eric Dumazet Orabug: 29886600 CVE-2019-11477 - tcp: add tcpminsndmss sysctl Eric Dumazet Orabug:...

TCP SACK Panic - Linux Kernel Vulnerability

Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. A remote attacker could use this to cause a denial of service. This has been fixed in stable kerne...