← Back to CVEs
CVE-2019-10950
CRITICAL9.8
Description
Fujifilm FCR Capsula X/ Carbon X/ FCR XC-2, model versions CR-IR 357 FCR Carbon X, CR-IR 357 FCR XC-2, FCR-IR 357 FCR Capsula X provide insecure telnet services that lack authentication requirements. An attacker who successfully exploits this vulnerability may be able to access the underlying operating system.
CVE Details
CVSS v3.1 Score9.8
SeverityCRITICAL
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published4/30/2019
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
fujifilm:cr-ir_357_fcr_capsula_xfujifilm:cr-ir_357_fcr_capsula_x_firmwarefujifilm:cr-ir_357_fcr_carbon_xfujifilm:cr-ir_357_fcr_carbon_x_firmwarefujifilm:cr-ir_357_fcr_xc-2fujifilm:cr-ir_357_fcr_xc-2_firmware
Weaknesses (CWE)
CWE-284CWE-306
References
http://www.securityfocus.com/bid/108052(ics-cert@hq.dhs.gov)
https://ics-cert.us-cert.gov/advisories/ICSMA-19-113-01(ics-cert@hq.dhs.gov)
http://www.securityfocus.com/bid/108052(af854a3a-2127-422b-91ae-364da2661108)
https://ics-cert.us-cert.gov/advisories/ICSMA-19-113-01(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.