V-Zug Combi-Steam MSLQ Devices Vulnerable to Password Brute-Force Attack

V-Zug Combi-Steam MSLQ Devices Vulnerable to Password Brute-Force Attack

CVE-2019-17215 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An issue was discovered on V-Zug Combi-Steam MSLQ devices before Ethernet R07 and before WLAN R05. There is no bruteforce protection (e.g., lockout) established. An attacker might be able to bruteforce the password to authenticate on the device.

Learn more about our Web Application Penetration Testing UK.