JM-DATA ONU JF511-TV version 1.0.67 uses default credentials that allow attackers to gain unauthorized access to the device with administrative privileges.
Weakness
The product uses default credentials (such as passwords or cryptographic keys) for potentially critical functionality.
Potential Mitigations
References
- https://cxsecurity.com/issue/WLB-2022060058
- https://exchange.xforce.ibmcloud.com/vulnerabilities/229344
- https://packetstormsecurity.com/files/167487/
- https://www.jm-data.com/
- https://www.vulncheck.com/advisories/jm-data-onu-jf-tv-default-credentials-vulnerability
- https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5708.php