Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2023-31240

Snap One OvrC Pro versions prior to 7.2 have their own locally running web server accessible both from the local network and remotely. OvrC cloud contains a hidden superuser account accessible through hard-coded credentials.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.2%
CVSS Severity
CVSS v3 Score 8.3
Products affected by CVE-2023-31240
  • Snapone » Orvc » Version: N/A
    cpe:2.3:a:snapone:orvc:-
  • Snapone » Orvc » Version: 6.2.0.5
    cpe:2.3:a:snapone:orvc:6.2.0.5
  • Snapone » Orvc » Version: 6.2.1.7
    cpe:2.3:a:snapone:orvc:6.2.1.7
  • Snapone » Orvc » Version: 6.3.0.4
    cpe:2.3:a:snapone:orvc:6.3.0.4
  • Snapone » Orvc » Version: 6.3.0.6
    cpe:2.3:a:snapone:orvc:6.3.0.6
  • Snapone » Orvc » Version: 6.4.0.3
    cpe:2.3:a:snapone:orvc:6.4.0.3
  • Snapone » Orvc » Version: 6.4.0.9
    cpe:2.3:a:snapone:orvc:6.4.0.9
  • Snapone » Orvc » Version: 7.0
    cpe:2.3:a:snapone:orvc:7.0
  • Snapone » Orvc » Version: 7.1.0
    cpe:2.3:a:snapone:orvc:7.1.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved