Vulnerabilities > Auto Maskin > DCU 210E Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2018-10-08 CVE-2018-5399 Use of Hard-coded Credentials vulnerability in Auto-Maskin Dcu-210E Firmware and Rp-210E Firmware
The Auto-Maskin DCU 210E firmware contains an undocumented Dropbear SSH server, v2015.55, configured to listen on Port 22 while the DCU is running.
network
low complexity
auto-maskin CWE-798
critical
 9.8
9.8
2018-10-08 CVE-2018-5400 Origin Validation Error vulnerability in Auto-Maskin DCU 210E Firmware and RP 210E Firmware
The Auto-Maskin products utilize an undocumented custom protocol to set up Modbus communications with other devices without validating those devices.
network
low complexity
auto-maskin CWE-346
critical
 9.1
9.1