漏洞标题
N/A
漏洞描述信息
在Marel Food Processing Systems M3000终端与以下系统关联时发现了一个硬编码的密码问题:A320, A325, A371, A520 Master, A520 Slave, A530, A542, A571, 检查箱分级器,FlowlineQC T376, IPM3双摄像头v132, IPM3双摄像头v139, IPM3单摄像头v132, P520, P574, SensorX13 QC flow line, SensorX23 QC Master, SensorX23 QC Slave, Speed Batcher, T374, T377, V36, V36B和V36C; M3210终端与上述相同系统的M3000终端相关联; M3000桌面软件与上述相同系统的M3000终端相关联; MAC4控制器与上述相同系统的M3000终端相关联; SensorX23 X-ray Machine; SensorX25 X-ray Machine; and MWS2重量系统。终端用户无法更改系统密码。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
A Hard-Coded Passwords issue was discovered in Marel Food Processing Systems M3000 terminal associated with the following systems: A320, A325, A371, A520 Master, A520 Slave, A530, A542, A571, Check Bin Grader, FlowlineQC T376, IPM3 Dual Cam v132, IPM3 Dual Cam v139, IPM3 Single Cam v132, P520, P574, SensorX13 QC flow line, SensorX23 QC Master, SensorX23 QC Slave, Speed Batcher, T374, T377, V36, V36B, and V36C; M3210 terminal associated with the same systems as the M3000 terminal identified above; M3000 desktop software associated with the same systems as the M3000 terminal identified above; MAC4 controller associated with the same systems as the M3000 terminal identified above; SensorX23 X-ray machine; SensorX25 X-ray machine; and MWS2 weighing system. The end user does not have the ability to change system passwords.
CVSS信息
N/A
漏洞类别
使用硬编码的口令
漏洞标题
多款Marel产品安全漏洞
漏洞描述信息
Marel SensorX25 X-ray Machine等都是冰岛Marel公司的应用于医疗行业的提供各种医学检测的产品。 多款Marel产品中存在任意文件上传漏洞,该漏洞源于程序使用了硬编码密码。攻击者可利用该漏洞获取受影响设备的管理员访问权限。以下产品受到影响:Marel SensorX25 X-ray Machine;Marel SensorX23 X-ray Machine;Marel MWS2 Weighing System;Marel MAC4 Controller;Marel M3210
CVSS信息
N/A
漏洞类别
信任管理问题