Hanwha Techwin SRN-4000, SRN-4000 firmware versions prior to SRN4000_v2.16_170401, A specially crafted http request and response could allow an attacker to gain access to the device management page with admin privileges without proper authentication.
References
Link | Resource |
---|---|
https://ics-cert.us-cert.gov/advisories/ICSA-17-136-03 | US Government Resource Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2019-04-08T14:17:09
Updated: 2019-04-08T14:17:09
Reserved: 2017-04-18T00:00:00
Link: CVE-2017-7912
JSON object: View
NVD Information
Status : Modified
Published: 2019-04-08T15:29:00.263
Modified: 2019-10-09T23:29:56.827
Link: CVE-2017-7912
JSON object: View
Redhat Information
No data.