CVE-2023-30603 CRITICAL

CVE-2023-30603: Hitron Technologies Inc. CODA-5310 - Using default credentials

Vendor Hitron Technologies Inc.
Product Hitron CODA-5310
Weakness CWE-1392
Published June 2, 2023
Last update January 8, 2025

CVSS base score

9.8/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Hitron Technologies CODA-5310 Telnet function with the default account and password, and there is no warning or prompt to ask users to change the default password and account. An unauthenticated remote attackers can exploit this vulnerability to obtain the administrator’s privilege, resulting in performing arbitrary system operation or disrupt service.

Key dates

02Disclosure timeline

June 2, 2023 CVE published
January 8, 2025 Record updated