Vulnerability Details CVE-2007-4746
The Cisco Video Surveillance IP Gateway Encoder/Decoder (Standalone and Module) firmware 1.8.1 and earlier, Video Surveillance SP/ISP Decoder Software firmware 1.11.0 and earlier, and the Video Surveillance SP/ISP firmware 1.23.7 and earlier have default passwords for the sypixx and root user accounts, which allows remote attackers to perform administrative actions, aka CSCsj34681.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.019
EPSS Ranking 82.6%
CVSS Severity
CVSS v2 Score 9.0
References
- http://osvdb.org/37502
- http://secunia.com/advisories/26721
- http://www.cisco.com/en/US/products/products_security_advisory09186a00808b4d38.shtml
- http://www.securityfocus.com/bid/25549
- http://www.securitytracker.com/id?1018655
- http://www.vupen.com/english/advisories/2007/3061
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36451
- http://osvdb.org/37502
- http://secunia.com/advisories/26721
- http://www.cisco.com/en/US/products/products_security_advisory09186a00808b4d38.shtml
- http://www.securityfocus.com/bid/25549
- http://www.securitytracker.com/id?1018655
- http://www.vupen.com/english/advisories/2007/3061
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36451
Products affected by CVE-2007-4746
-
cpe:2.3:a:cisco:video_surveillance_ip_gateway_encoder_decoder:-
-
cpe:2.3:a:cisco:video_surveillance_ip_gateway_encoder_decoder:1.8.1
-
cpe:2.3:a:cisco:video_surveillance_sp_isp_decoder_software:-
-
cpe:2.3:a:cisco:video_surveillance_sp_isp_decoder_software:1.11.0
-
cpe:2.3:h:cisco:video_surveillance_sp_isp:-
-
cpe:2.3:h:cisco:video_surveillance_sp_isp:1.23.7