CVE-2016-1984
22.01.2016, 11:59
The setUpSubtleUserAccount function in /bin/bw on Harman AMX devices before 2016-01-20 has a hardcoded password for the 1MB@tMaN account, which makes it easier for remote attackers to obtain access via a (1) SSH or (2) HTTP session, a different vulnerability than CVE-2015-8362.Enginsight
Vendor | Product | Version |
---|---|---|
harman | amx_firmware | 1.2.322 |
harman | amx_firmware | 1.3.100 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References