CVE-2020-26097

** UNSUPPORTED WHEN ASSIGNED ** The firmware of the PLANET Technology Corp NVR-915 and NVR-1615 before 2020-10-28 embeds default credentials for root access via telnet. By exposing telnet on the Internet, remote root access on the device is possible. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:planet:nvr-915_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:planet:nvr-915:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:planet:nvr-1615_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:planet:nvr-1615:-:*:*:*:*:*:*:*

Information

Published : 2020-11-18 10:15

Updated : 2021-07-21 04:39


NVD link : CVE-2020-26097

Mitre link : CVE-2020-26097


JSON object : View

CWE
CWE-798

Use of Hard-coded Credentials

Advertisement

dedicated server usa

Products Affected

planet

  • nvr-1615_firmware
  • nvr-915
  • nvr-1615
  • nvr-915_firmware