CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2020-16258

HIGH
7.1
CVSS Severity Score
EPSS Score0.1180%
EPSS Percentile0.56th
Published2020年10月28日
Last Modified2024年11月21日

Vulnerability Description

Winston 1.5.4 devices make use of a Monit service (not managed during the normal user process) which is configured with default credentials.

Affected Platforms (CPE)

💻
Winstonprivacy

Winston Firmware

= 1.5.4

References & Advisories

🔗 https://labs.bishopfox.com/advisories/winston-privacy-version-1.5.4
🔗 https://winstonprivacy.com/
🔗 https://labs.bishopfox.com/advisories/winston-privacy-version-1.5.4
🔗 https://winstonprivacy.com/

相關漏洞威脅

CVE-2020-696210.0

In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Ve...

CVE-2020-696610.0

In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Ver...

CVE-2020-696110.0

In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Ve...

CVE-2020-696310.0

In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Ver...