Vulnerability Description
Adtec Digital SignEdje Digital Signage Player v2.08.28 contains multiple hardcoded default credentials that allow unauthenticated remote access to web, telnet, and SSH interfaces. Attackers can exploit these credentials to gain root-level access and execute system commands across multiple Adtec Digital product versions.
CVSS Score
HIGH
Related Weaknesses (CWE)
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/190628
- https://packetstorm.news/files/id/159709
- https://www.adtecdigital.com
- https://www.exploit-db.com/exploits/48954
- https://www.vulncheck.com/advisories/adtec-digital-signedje-digital-signage-play
- https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5603.php
- https://www.exploit-db.com/exploits/48954
FAQ
What is CVE-2020-36915?
CVE-2020-36915 is a vulnerability with a CVSS score of 7.5 (HIGH). Adtec Digital SignEdje Digital Signage Player v2.08.28 contains multiple hardcoded default credentials that allow unauthenticated remote access to web, telnet, and SSH interfaces. Attackers can exploi...
How severe is CVE-2020-36915?
CVE-2020-36915 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-36915?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.