CVE-2019-12394 · Vexday

CVE-2019-12394

EPSS 2.1%

Anviz access control devices allow unverified password change which allows remote attackers to change the administrator password without prior authentication.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.0x90.zone/multiple/reverse/2019/11/28/Anviz-pwn.html