CVE-2016-4520

Schneider Electric Pelco Digital Sentry Video Management System with firmware before 7.14 has hardcoded credentials, which allows remote attackers to obtain access, and consequently execute arbitrary code, via unspecified vectors.

BID: http://www.securityfocus.com/bid/91783
CONFIRM: http://www.schneider-electric.com/ww/en/download/document/SEVD-2016-153-01
MISC: https://ics-cert.us-cert.gov/advisories/ICSA-16-196-01
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4520

12 years
255 countries
679k users
4500k calculations