Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2024-12013
Deferred
More InfoOfficial Page
Source-prodsec@nozominetworks.com
View Known Exploited Vulnerability (KEV) details
Published At-13 Feb, 2025 | 16:15
Updated At-15 Apr, 2026 | 00:35

A CWE-1392 “Use of Default Credentials” was discovered affecting the 130.8005 TCP/IP Gateway running firmware version 12h. The device exposes an FTP server with default and easy-to-guess admin credentials. A remote attacker capable of interacting with the FTP server could gain access and perform changes over resources exposed by the service such as configuration files where password hashes are saved or where network settings are stored.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Secondary3.17.6HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L
Type: Secondary
Version: 3.1
Base score: 7.6
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L
CPE Matches
Weaknesses
CWE IDTypeSource
CWE-1392Secondaryprodsec@nozominetworks.com
CWE ID: CWE-1392
Type: Secondary
Source: prodsec@nozominetworks.com
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2024-12013prodsec@nozominetworks.com
N/A
Hyperlink: https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2024-12013
Source: prodsec@nozominetworks.com
Resource: N/A
Change History
0Changes found
Details not found