ID CVE-2018-12260
Summary An issue was discovered on Momentum Axel 720P 5.1.8 devices. The root password can be obtained in cleartext by issuing the command 'showKey' from the root CLI. This password may be the same on all devices
References
Vulnerable Configurations
  • cpe:2.3:o:apollotechnologiesinc:momentum_axel_720p_firmware:5.1.8
    cpe:2.3:o:apollotechnologiesinc:momentum_axel_720p_firmware:5.1.8
  • cpe:2.3:h:apollotechnologiesinc:momentum_axel_720p
    cpe:2.3:h:apollotechnologiesinc:momentum_axel_720p
CVSS
Base: 2.1
Impact:
Exploitability:
CWE CWE-255
CAPEC
refmap via4
misc https://rchase.com/downloads/momentum-iot-penetration-test-report.pdf
Last major update 12-06-2018 - 14:29
Published 12-06-2018 - 14:29
Last modified 02-08-2018 - 10:25
Back to Top