Vulnerabilities > CVE-2019-12305 - Unspecified vulnerability in Actions-Micro Ezcast PRO II Firmware

CVSS 6.5 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

low complexity

actions-micro

NVD

Published: 2020-10-16

Updated: 2021-07-21

Summary

In EZCast Pro II, the administrator password md5 hash is provided upon a web request. This hash can be cracked to access the administration panel of the device.

Vulnerable Configurations

Part	Description	Count
OS	Actions-Micro Actions Micro Ezcast PRO II Firmware -	1
Hardware	Actions-Micro Actions Micro Ezcast PRO II -	1

References

https://digital.security/advisories/cert-ds_advisory-ezcast_pro_ii_admin_password-cve-2019-12305.txt