CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2015-2909

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1570%
EPSS Percentile12.70th
Published2020年2月6日
Last Modified2024年11月21日

Vulnerability Description

Dedicated Micros DV-IP Express, SD Advanced, SD, EcoSense, and DS2 devices rely on a GUI warning to help ensure that the administrator configures login credentials, which makes it easier for remote attackers to obtain access by leveraging situations in which this warning was not heeded. NOTE: the vendor states "The user is presented with clear warnings on the GUI that they should set usernames and passwords."

Affected Platforms (CPE)

💻
Netvu

Dv Ip Express Firmware

All versions
💻
Netvu

Sd Advanced Sdhd Firmware

All versions
💻
Netvu

Sd Advanced 8\/12\/16 Vga Firmware

All versions
💻
Netvu

Sd Advanced Closed Iptv \(m3u\) Firmware

All versions
💻
Netvu

Sd Advanced Non Closed Iptv \(m3u\) Firmware

All versions
💻
Netvu

Sd Advanced Nvr Firmware

All versions
💻
Netvu

Sd 32 \(m3g\) Firmware

All versions
💻
Netvu

Sd 32 \(m3h\) Firmware

All versions
💻
Netvu

Sd 4 \(m3s\) Firmware

All versions
💻
Netvu

Sd 4 \(m3t\) Firmware

All versions
💻
Netvu

Sd 8\/12\/16 No Kbd \(m3r\) Firmware

All versions
💻
Netvu

Sd 8\/12\/16 No Kbd \(m3s\) Firmware

All versions
💻
Netvu

Sd 8\/16 Front Panel Kbd \(m3r\) Firmware

All versions
💻
Netvu

Sd 8\/16 Front Panel Kbd \(m3u\) Firmware

All versions
💻
Netvu

Ecosense 4\/8\/16 \(m4t\) Firmware

All versions
💻
Netvu

Ds2 \(dvtr\) Firmware

All versions
💻
Netvu

Ds2 \(dvtu\) Firmware

All versions
💻
Netvu

Ds2 \(dvtx\) Firmware

All versions
💻
Netvu

Ds2 \(dvtx\) Netvu Connected Firmware

All versions
💻
Netvu

Ds2 \(m2ip\) Firmware

All versions

References & Advisories

🔗 http://cybergibbons.com/security-2/shodan-searches/interesting-shodan-searches-sd-advanced-dvrs/
🔗 http://www.kb.cert.org/vuls/id/276148
🔗 http://cybergibbons.com/security-2/shodan-searches/interesting-shodan-searches-sd-advanced-dvrs/
🔗 http://www.kb.cert.org/vuls/id/276148

相關漏洞威脅

CVE-2010-18047.1

Unspecified vulnerability in the network bridge functionality on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort...

CVE-2009-21896.1

The ICMPv6 implementation on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort Express Base Station with firmware ...

CVE-2005-37145.0

The network interface for Apple AirPort Express 6.x before Firmware Update 6.3, and AirPort Extreme 5.x before Firmware Update 5.7...

CVE-2010-09625.0

The FTP proxy server in Apple AirPort Express, AirPort Extreme, and Time Capsule with firmware 7.5 does not restrict the IP addres...

CVE-2015-2909 Detail & Impact Analysis | CVSS 9.8 (CRITICAL) | Cyber-Sec.Space | Cyber-Sec.Space