Vulnerability Details CVE-2021-28111
Draeger X-Dock Firmware before 03.00.13 has Hard-Coded Credentials, leading to remote code execution by an authenticated attacker.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.03
EPSS Ranking 86.0%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
References
- https://static.draeger.com/security
- https://static.draeger.com/security/download/PSA-21-120-1-X-Dock-Product-Security-Advisory.pdf
- https://www.zerodayinitiative.com/advisories/ZDI-21-604/
- https://static.draeger.com/security
- https://static.draeger.com/security/download/PSA-21-120-1-X-Dock-Product-Security-Advisory.pdf
- https://www.zerodayinitiative.com/advisories/ZDI-21-604/
Products affected by CVE-2021-28111
-
cpe:2.3:h:draeger:x-dock_5300:-
-
cpe:2.3:h:draeger:x-dock_6300:-
-
cpe:2.3:h:draeger:x-dock_6600:-
-
cpe:2.3:o:draeger:x-dock_firmware:-