← Back to CVEs
CVE-2023-30603
CRITICAL9.8
Description
Hitron Technologies CODA-5310 Telnet function with the default account and password, and there is no warning or prompt to ask users to change the default password and account. An unauthenticated remote attackers can exploit this vulnerability to obtain the administrator’s privilege, resulting in performing arbitrary system operation or disrupt service.
CVE Details
CVSS v3.1 Score9.8
SeverityCRITICAL
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published6/2/2023
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
hitrontech:coda-5310hitrontech:coda-5310_firmware
Weaknesses (CWE)
CWE-1392
References
https://www.twcert.org.tw/tw/cp-132-7085-13321-1.html(twcert@cert.org.tw)
https://www.twcert.org.tw/tw/cp-132-7085-13321-1.html(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.