CVE-2020-28330

by Fred · 24/11/2020

Barco wePresent WiPG-1600W devices have Unprotected Transport of Credentials. Affected Version(s): 2.5.1.8. An attacker armed with hardcoded API credentials (retrieved by exploiting CVE-2020-28329) can issue an authenticated query to display the admin password for the main web user interface listening on port 443/tcp of a Barco wePresent WiPG-1600W device.

Date published : 2020-11-24

https://korelogic.com/Resources/Advisories/KL-001-2020-005.txt

CVE-2020-28330

Similar

Recent Posts

Categories

CVE-2020-28330

Share this:

Similar

Recent Posts

Categories

Tags