QwikSec

Security Database

CVE

CWE

Training

CVE-2020-27689

Published: Nov 4, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

The Relish (Verve Connect) VH510 device with firmware before 1.0.1.6L0516 contains undocumented default admin credentials for the web management interface. A remote attacker could exploit this vulnerability to login and execute commands on the device, as well as upgrade the firmware image to a malicious version.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://6point6.co.uk/insights/security-advisory-relish-4g-hub-vh510/

x_refsource_MISC

https://6point6.co.uk/wp-content/uploads/2020/10/Relish-4G-VH510-Hub-Full-Disclosure-v1.3.pdf

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.