CVE-2008-5848
Severity Score
10.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The Advantech ADAM-6000 module has 00000000 as its default password, which makes it easier for remote attackers to obtain access through an HTTP session, and (1) monitor or (2) control the module's Modbus/TCP I/O activity.
El módulo Advantech ADAM-6000 tiene 00000000 como su contraseña por defecto, lo que hace más fácil a atacantes remotos obtener acceso a través de una sesión HTTP, y (1) monitorizar o (2) controlar la actividad I/O del módulo Modbus/TCP.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2009-01-06 CVE Reserved
- 2009-01-06 CVE Published
- 2024-09-16 CVE Updated
- 2024-09-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-255: Credentials Management Errors
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://ruxcon.org.au/files/2008/SIFT-Ruxcon2008-SCADA-Hacking-Modbus-Enabled-Devices.pdf | Url Repurposed | |
| http://support.advantech.com.tw/support/DownloadSRDetail.aspx?SR_ID=1-95WMW | X_refsource_confirm | |
| http://www.ruxcon.org.au/presentations.shtml#13 | Url Repurposed |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Advantech Search vendor "Advantech" | Adam-6015 Search vendor "Advantech" for product "Adam-6015" | * | - |
Affected
| ||||||
| Advantech Search vendor "Advantech" | Adam-6017 Search vendor "Advantech" for product "Adam-6017" | * | - |
Affected
| ||||||
| Advantech Search vendor "Advantech" | Adam-6018 Search vendor "Advantech" for product "Adam-6018" | * | - |
Affected
| ||||||
| Advantech Search vendor "Advantech" | Adam-6022 Search vendor "Advantech" for product "Adam-6022" | * | - |
Affected
| ||||||
| Advantech Search vendor "Advantech" | Adam-6024 Search vendor "Advantech" for product "Adam-6024" | * | - |
Affected
| ||||||
| Advantech Search vendor "Advantech" | Adam-6050 Search vendor "Advantech" for product "Adam-6050" | * | - |
Affected
| ||||||
| Advantech Search vendor "Advantech" | Adam-6050w Search vendor "Advantech" for product "Adam-6050w" | * | - |
Affected
| ||||||
| Advantech Search vendor "Advantech" | Adam-6051 Search vendor "Advantech" for product "Adam-6051" | * | - |
Affected
| ||||||
| Advantech Search vendor "Advantech" | Adam-6051w Search vendor "Advantech" for product "Adam-6051w" | * | - |
Affected
| ||||||
| Advantech Search vendor "Advantech" | Adam-6052 Search vendor "Advantech" for product "Adam-6052" | * | - |
Affected
| ||||||
| Advantech Search vendor "Advantech" | Adam-6060 Search vendor "Advantech" for product "Adam-6060" | * | - |
Affected
| ||||||
| Advantech Search vendor "Advantech" | Adam-6060w Search vendor "Advantech" for product "Adam-6060w" | * | - |
Affected
| ||||||
| Advantech Search vendor "Advantech" | Adam-6066 Search vendor "Advantech" for product "Adam-6066" | * | - |
Affected
| ||||||
| Advantech Search vendor "Advantech" | Adam-6501 Search vendor "Advantech" for product "Adam-6501" | * | - |
Affected
| ||||||