Published: 01/07/2019 Updated: 24/08/2020
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 1000
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

Optergy Proton/Enterprise devices allow Remote Root Code Execution via a Backdoor Console.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

optergy enterprise

optergy proton


# Title: Optergy 230a - Remote Code Execution # Author: LiquidWorm # Date: 2019-11-05 # Vendor: optergycom/ # Product web page: optergycom/products/ # Affected version: <=230a # Advisory: applied-riskcom/resources/ar-2019-008 # Paper: applied-riskcom/resources/i-own-your-building-management-system # CVE: C ...

Mailing Lists

Optergy BMS versions 203a and below unauthenticated remote root exploit Related CVE number: CVE-2019-7276 ...