Intelliantech: Security Vulnerabilities
The Intellian Aptus application 1.0.2 for Android has hardcoded values for DOWNLOAD_API_KEY and FILE_DOWNLOAD_API_KEY.
CVSS Score
9.8
EPSS Score
0.004
Published
2020-01-27
Intellian Aptus Web 1.24 has a hardcoded password of 12345678 for the intellian account.
CVSS Score
9.8
EPSS Score
0.008
Published
2020-01-27
The Intellian Aptus application 1.0.2 for Android has a hardcoded password of intellian for the masteruser FTP account.
CVSS Score
9.8
EPSS Score
0.004
Published
2020-01-27
Intellian Aptus Web 1.24 allows remote attackers to execute arbitrary OS commands via the Q field within JSON data to the cgi-bin/libagent.cgi URI. NOTE: a valid sid cookie for a login to the intellian default account might be needed.
CVSS Score
9.8
EPSS Score
0.934
Published
2020-01-25
Intellian Remote Access 3.18 allows remote attackers to execute arbitrary OS commands via shell metacharacters in the Ping Test field.
CVSS Score
9.8
EPSS Score
0.015
Published
2019-10-07
Intellian Satellite TV antennas t-Series and v-Series, firmware version 1.07, uses non-random default credentials of: ftp/ftp or intellian:12345678. A remote network attacker can gain elevated access to a vulnerable device.
CVSS Score
9.8
EPSS Score
0.006
Published
2018-07-13