CVE-2019-12389 · Vexday

CVE-2019-12389

EPSS 1.8%

Anviz access control devices expose credentials (names and passwords) by allowing remote attackers to query this information without credentials via port tcp/5010.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.0x90.zone/multiple/reverse/2019/11/28/Anviz-pwn.html