Schneider Electric Pelco Digital Sentry Video Management System with firmware before 7.14 has hardcoded credentials, which allows remote attackers to obtain access, and consequently execute arbitrary code, via unspecified vectors.
References
Link | Resource |
---|---|
http://www.schneider-electric.com/ww/en/download/document/SEVD-2016-153-01 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/91783 | |
https://ics-cert.us-cert.gov/advisories/ICSA-16-196-01 | Third Party Advisory US Government Resource |
http://www.schneider-electric.com/ww/en/download/document/SEVD-2016-153-01 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/91783 | |
https://ics-cert.us-cert.gov/advisories/ICSA-16-196-01 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:52
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.schneider-electric.com/ww/en/download/document/SEVD-2016-153-01 - Patch, Vendor Advisory | |
References | () http://www.securityfocus.com/bid/91783 - | |
References | () https://ics-cert.us-cert.gov/advisories/ICSA-16-196-01 - Third Party Advisory, US Government Resource |
Information
Published : 2016-07-15 16:59
Updated : 2024-11-21 02:52
NVD link : CVE-2016-4520
Mitre link : CVE-2016-4520
CVE.ORG link : CVE-2016-4520
JSON object : View
Products Affected
schneider-electric
- pelco_digital_sentry_video_management_system_firmware
CWE