CVE-2015-2909

Published: Feb 6, 2020

Modified: Aug 6, 2024

PUBLISHED

Description

Dedicated Micros DV-IP Express, SD Advanced, SD, EcoSense, and DS2 devices rely on a GUI warning to help ensure that the administrator configures login credentials, which makes it easier for remote attackers to obtain access by leveraging situations in which this warning was not heeded. NOTE: the vendor states "The user is presented with clear warnings on the GUI that they should set usernames and passwords."

Vendor	Product	Versions
Dedicated Micros	DV-IP Express	affected `unknown`
Dedicated Micros	SD Advanced	affected `unknown`
Dedicated Micros	SD	affected `unknown`
Dedicated Micros	EcoSense	affected `unknown`
Dedicated Micros	DS2	affected `unknown`

References

http://cybergibbons.com/security-2/shodan-searches/interesting-shodan-searches-sd-advanced-dvrs/

x_refsource_MISC

http://www.kb.cert.org/vuls/id/276148

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2015-2909

Description

Affected Products

References