Executive Summary

Informations
NameCVE-2019-8950First vendor Publication2019-02-19
VendorCveLast vendor Modification2019-02-21

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score10Attack RangeNetwork
Cvss Impact Score10Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

The backdoor account dnsekakf2$$ in /bin/login on DASAN H665 devices with firmware 1.46p1-0028 allows an attacker to login to the admin account via TELNET.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8950

CWE : Common Weakness Enumeration

%idName
100 %CWE-255Credentials Management

CPE : Common Platform Enumeration

TypeDescriptionCount
Hardware1
Os1

Sources (Detail)

SourceUrl
MISC https://blog.burghardt.pl/2019/02/dasan-h665-has-vendor-backdoor-built-into-b...
https://seclists.org/bugtraq/2019/Feb/32

Alert History

If you want to see full details history, please login or register.
0
1
DateInformations
2019-02-22 12:07:52
  • Multiple Updates
2019-02-20 12:09:52
  • First insertion