Lucene search
HistoryJan 26, 2014 - 1:55 a.m.
CVE-2013-7248
cve-2013-7248
franklin fueling systems
ts-550 evo
firmware
remote attack
hardcoded password
root privileges
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.1 High
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.6%
Franklin Fueling Systems TS-550 evo with firmware 2.0.0.6833 and other versions before 2.4.0 has a hardcoded password for the roleDiag account, which allows remote attackers to gain root privileges, as demonstrated using a cmdWebCheckRole action in a TSA_REQUEST.
Affected configurations
Node
franklinfuelingts-550_evo_firmwareMatch2.0.0.6833
ORfranklinfuelingts-550_evo_firmwareMatch2.3.1.7492
franklinfuelingts-550_evoMatch-
Related
nvd
nvd
CVE-2013-7248
2014-01-26 01:55:09
prion
prion
Hardcoded credentials
2014-01-26 01:55:00
cvelist
cvelist
CVE-2013-7248
2014-01-26 01:00:00
zdt
zdt
Franklin Fueling TS-550 evo 2.0.0.6833 - Multiple Vulnerabilities
2014-01-24 00:00:00
Franklin Fueling's T550 Evo Access Control / Credentials
2014-01-23 00:00:00
seebug
seebug
Franklin Fueling Systems TS-550 evo 'tsaws.cgi'安全绕过漏洞
2014-02-07 00:00:00
Franklin Fueling TS-550 evo 2.0.0.6833 - Multiple Vulnerabilities
2014-07-01 00:00:00
exploitpack
exploitpack
Franklin Fueling TS-550 evo 2.0.0.6833 - Multiple Vulnerabilities
2014-01-24 00:00:00
packetstorm
packetstorm
Franklin Fueling's T550 Evo Access Control / Credentials
2014-01-21 00:00:00
exploitdb
exploitdb
Franklin Fueling TS-550 evo 2.0.0.6833 - Multiple Vulnerabilities
2014-01-24 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.1 High
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.6%
Related for CVE-2013-7248