CVE-2023-25184
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability: 3.9 / Impact: 3.6
Source: NVD
Description
Use of weak credentials exists in Seiko Solutions SkyBridge and SkySpider series, which may allow a remote unauthenticated attacker to decrypt password for the WebUI of the product. Affected products and versions are as follows: SkyBridge MB-A200 firmware Ver. 01.00.05 and earlier, SkyBridge BASIC MB-A130 firmware Ver. 1.4.1 and earlier, and SkySpider MB-R210 firmware Ver. 1.01.00 and earlier.
Affected (3)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.4.1 |
| Running on/with | Platform Versions |
|---|---|
Seiko Sol Skybridge Basic Mb A130 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 01.00.05 |
| Running on/with | Platform Versions |
|---|---|
Seiko Sol Skybridge Mb A200 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.01.00 |
| Running on/with | Platform Versions |
|---|---|
Seiko Sol Skyspider Mb R210 | All versions |
References (12)
Source: vultures@jpcert.or.jp
Product
Source: vultures@jpcert.or.jp
Product
Source: vultures@jpcert.or.jp
Product
Source: vultures@jpcert.or.jp
Product
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Product
Source: af854a3a-2127-422b-91ae-364da2661108
Product
Source: af854a3a-2127-422b-91ae-364da2661108
Product
Source: af854a3a-2127-422b-91ae-364da2661108
Product
Timeline
No history available yet.