CVE-2018-12260

An issue was discovered on Momentum Axel 720P 5.1.8 devices. The root password can be obtained in cleartext by issuing the command 'showKey' from the root CLI. This password may be the same on all devices
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.7 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 20%
VendorProductVersion
apollotechnologiesincmomentum_axel_720p_firmware
5.1.8
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://rchase.com/downloads/momentum-iot-penetration-test-report.pdf
https://rchase.com/downloads/momentum-iot-penetration-test-report.pdf