CVE-2016-4520

Schneider Electric Pelco Digital Sentry Video Management System with firmware before 7.14 has hardcoded credentials, which allows remote attackers to obtain access, and consequently execute arbitrary code, via unspecified vectors.

MISC: https://ics-cert.us-cert.gov/advisories/ICSA-16-196-01
CONFIRM: http://www.schneider-electric.com/ww/en/download/document/SEVD-2016-153-01
BID: http://www.securityfocus.com/bid/91783
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4520

7 years
216 countries
100k users
738k calculations