CVE-2023-2504

HIGH8.4JSON export Create alert

Description

Files present on firmware images could allow an attacker to gain unauthorized access as a root user using hard-coded credentials.

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected products

BirdDog / 4K QUAD4.5.181 – 4.5.181
BirdDog / 4K QUAD4.5.196 – 4.5.196
BirdDog / A300 EYES3.4 – 3.4
BirdDog / MINI2.6.2 – 2.6.2
BirdDog / STUDIO R33.6.4 – 3.6.4

References

VENDOR_ADVISORYhttps://www.cisa.gov/news-events/ics-advisories/icsa-23-131-11
MISChttps://birddog.tv/downloads/