Vulnerability Details CVE-2012-3020
The Siemens Synco OZW Web Server devices OZW672.*, OZW772.*, and OZW775 with firmware before 4 have an unspecified default password, which makes it easier for remote attackers to obtain administrative access via a network session.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 63.3%
CVSS Severity
CVSS v2 Score 7.5
References
Products affected by CVE-2012-3020
-
cpe:2.3:h:siemens:synco_ozw_web_server:ozw672.01
-
cpe:2.3:h:siemens:synco_ozw_web_server:ozw672.04
-
cpe:2.3:h:siemens:synco_ozw_web_server:ozw672.16
-
cpe:2.3:h:siemens:synco_ozw_web_server:ozw772.01
-
cpe:2.3:h:siemens:synco_ozw_web_server:ozw772.04
-
cpe:2.3:h:siemens:synco_ozw_web_server:ozw772.16
-
cpe:2.3:h:siemens:synco_ozw_web_server:ozw772.250
-
cpe:2.3:h:siemens:synco_ozw_web_server:ozw775
-
cpe:2.3:o:siemens:synco_ozw_web_server_firmware:3.0