Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Jinan USR IOT Technology Limited (PUSR) USR-W610 Weak Password Requirements
Vulnerability Description
The web management interface of the device allows the administrator username and password to be set to blank values. Once applied, the device permits authentication with empty credentials over the web management interface and Telnet service. This effectively disables authentication across all critical management channels, allowing any network-adjacent attacker to gain full administrative control without credentials.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
弱口令要求
Vulnerability Title
Jinan USR IOT USR-W610 安全漏洞
Vulnerability Description
Jinan USR IOT USR-W610是中国有人物联网(Jinan USR IOT)公司的一款串口转以太网转换器。 Jinan USR IOT USR-W610存在安全漏洞,该漏洞源于允许将管理员用户名和密码设置为空值,可能导致未经身份验证的攻击者获得完全管理控制权。
CVSS Information
N/A
Vulnerability Type
N/A