Details of VAR-202106-2070

ID

VAR-202106-2070

TITLE

UTP UTP-R3050-5GP has weak password vulnerability

Trust: 0.6

sources: CNVD: CNVD-2021-33183

DESCRIPTION

Established in 2005, UTEPO is an industrial communication and intelligent Internet of Things solution provider with "Internet and Electricity Speed Connection" technology as the core. Based on technological innovation, it is a smart park, smart security, smart city, Provide smart IoT solutions in fields such as smart agriculture and smart manufacturing. UTP UTP-R3050-5GP has weak password vulnerability. Attackers can use weak passwords to log in to the system to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-33183

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-33183

AFFECTED PRODUCTS

vendor:

utp

model:

utp-r3050-5gp

scope:

version:

v4.0-202006101822

Trust: 0.6

sources: CNVD: CNVD-2021-33183

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2021-33183
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2021-33183
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2021-33183

EXTERNAL IDS

db:

CNVD

id:

CNVD-2021-33183

Trust: 0.6

sources: CNVD: CNVD-2021-33183

SOURCES

db:

CNVD

id:

CNVD-2021-33183

LAST UPDATE DATE

2022-05-04T10:21:12.329000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2021-33183

date:

2021-05-08T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2021-33183

date:

2021-06-05T00:00:00