Credential Discovery Vulnerability in Skyworth CM5100 Series Devices

Credential Discovery Vulnerability in Skyworth CM5100 Series Devices

CVE-2018-20398 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Skyworth CM5100 V1.1.0, CM5100-440 V1.2.1, CM5100-511 4.1.0.14, CM5100-GHD00 V1.2.2, and CM5100.g2 4.1.0.17 devices allow remote attackers to discover credentials via iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and iso.3.6.1.4.1.4491.2.4.1.1.6.1.2.0 SNMP requests.

Learn more about our Web Application Penetration Testing UK.