SNMP Credential Discovery Vulnerability in CastleNet Devices

SNMP Credential Discovery Vulnerability in CastleNet Devices

CVE-2018-20385 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

CastleNet CBV38Z4EC 125.553mp1.39219mp1.899.007, CBV38Z4ECNIT 125.553mp1.39219mp1.899.005ITT, CBW383G4J 37.556mp5.008, and CBW38G4J 37.553mp1.008 devices allow remote attackers to discover credentials via iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and iso.3.6.1.4.1.4491.2.4.1.1.6.1.2.0 SNMP requests.

Learn more about our Web Application Penetration Testing UK.