Unauthenticated TELNET Remote Access Vulnerability in Cloud Media Popcorn A-200 Firmware

Unauthenticated TELNET Remote Access Vulnerability in Cloud Media Popcorn A-200 Firmware

CVE-2018-12072 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

An issue was discovered in Cloud Media Popcorn A-200 03-05-130708-21-POP-411-000 firmware. It is configured to provide TELNET remote access (without a password) that pops a shell as root. If an attacker can connect to port 23 on the device, he can completely compromise it.

Learn more about our Cloud Audit.