CVE-2012-3020

The Siemens Synco OZW Web Server devices OZW672.*, OZW772.*, and OZW775 with firmware before 4 have an unspecified default password, which makes it easier for remote attackers to obtain administrative access via a network session.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
icscertCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 62%
VendorProductVersion
siemenssynco_ozw_web_server_firmware
𝑥
≤ 3.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://support.automation.siemens.com/WW/view/en/41929231/130000
http://www.us-cert.gov/control_systems/pdf/ICSA-12-214-01.pdf
http://support.automation.siemens.com/WW/view/en/41929231/130000
http://www.us-cert.gov/control_systems/pdf/ICSA-12-214-01.pdf