CVE-2016-4520

Schneider Electric Pelco Digital Sentry Video Management System with firmware before 7.14 has hardcoded credentials, which allows remote attackers to obtain access, and consequently execute arbitrary code, via unspecified vectors.

MISC: https://ics-cert.us-cert.gov/advisories/ICSA-16-196-01
CONFIRM: http://www.schneider-electric.com/ww/en/download/document/SEVD-2016-153-01
BID: http://www.securityfocus.com/bid/91783
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4520

7 years
222 countries
120k users
856k calculations
Logo www.eleksys.cz
Logo www.elsec.cz
Logo reolink.com
Logo secutek.cz
Logo www.i4wifi.cz
Logo blog.camcloud.com