Unauthenticated Access to Hanwha Techwin SRN-4000 Device Management Page

Unauthenticated Access to Hanwha Techwin SRN-4000 Device Management Page

CVE-2017-7912 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Hanwha Techwin SRN-4000, SRN-4000 firmware versions prior to SRN4000_v2.16_170401, A specially crafted http request and response could allow an attacker to gain access to the device management page with admin privileges without proper authentication.

Learn more about our Web Application Penetration Testing UK.