Hard-coded Credentials Vulnerability in Baxter Spectrum WBM

Hard-coded Credentials Vulnerability in Baxter Spectrum WBM

CVE-2020-12047 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

The Baxter Spectrum WBM (v17, v20D29, v20D30, v20D31, and v22D24), when used with a Baxter Spectrum v8.x (model 35700BAX2) in a factory-default wireless configuration enables an FTP service with hard-coded credentials.

Learn more about our Wireless Penetration Test.