Vulnerabilities > CVE-2019-15304 - Insecure Default Initialization of Resource vulnerability in Progradegrill Wifi Grilling Thermometer Firmware 1.0050006

047910
CVSS 6.4 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
progradegrill
CWE-1188

Summary

Lierda Grill Temperature Monitor V1.00_50006 has a default password of admin for the admin account, which allows an attacker to cause a Denial of Service or Information Disclosure via the undocumented access-point configuration page located on the device. NOTE: this device also ships with ProGrade branding.

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/154221/progreadelierda-disclosehardcoded.txt
idPACKETSTORM:154221
last seen2019-08-26
published2019-08-26
reporterTim Tepatti
sourcehttps://packetstormsecurity.com/files/154221/ProGrade-Lierda-Grill-Temperature-1.00_50006-Hardcoded-Credentials.html
titleProGrade/Lierda Grill Temperature 1.00_50006 Hardcoded Credentials