The Auto-Maskin DCU 210E, RP-210E, and Marine Pro Observer Android App use an embedded webserver that uses unencrypted plaintext for the transmission of the administrator PIN Impact: An attacker once authenticated can change configurations, upload new configuration files, and upload executable code via file upload for firmware updates. Requires access to the network. Affected releases are Auto-Maskin DCU-210E, RP-210E, and the Marine Pro Observer Android App. Versions before 3.7 on ARMv7.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
auto-maskin rp_210e_firmware - |
||
auto-maskin dcu_210e_firmware - |
||
auto-maskin marine pro observer - |