Vulnerabilities > CVE-2023-30603 - Unspecified vulnerability in Hitrontech Coda-5310 Firmware 7.2.4.7.1B3

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

hitrontech

critical

NVD

Published: 2023-06-02

Updated: 2024-10-14

Summary

Hitron Technologies CODA-5310 Telnet function with the default account and password, and there is no warning or prompt to ask users to change the default password and account. An unauthenticated remote attackers can exploit this vulnerability to obtain the administrator’s privilege, resulting in performing arbitrary system operation or disrupt service.

Vulnerable Configurations

Part	Description	Count
OS	Hitrontech Hitrontech Coda 5310 Firmware 7.2.4.7.1B3	1
Hardware	Hitrontech Hitrontech Coda 5310 -	1

References

https://www.twcert.org.tw/tw/cp-132-7085-13321-1.html