Vulnerability Details CVE-2020-9023
Iteris Vantage Velocity Field Unit 2.3.1 and 2.4.2 devices have two users that are not documented and are configured with weak passwords (User bluetooth, password bluetooth; User eclipse, password eclipse). Also, bluetooth is the root password.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 56.8%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2020-9023
-
cpe:2.3:h:iteris:vantage_velocity:-
-
cpe:2.3:o:iteris:vantage_velocity_firmware:2.3.1
-
cpe:2.3:o:iteris:vantage_velocity_firmware:2.4.2