5.4
CVE-2017-9649
- EPSS 0.46%
- Veröffentlicht 20.09.2017 16:29:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
- Quelle ics-cert@hq.dhs.gov
- CVE-Watchlists
- Unerledigt
LoginA Use of Hard-Coded Cryptographic Key issue was discovered in Mirion Technologies DMC 3000 Transmitter Module, iPam Transmitter f/DMC 2000, RDS-31 iTX and variants (including RSD31-AM Package), DRM-1/2 and variants (including Solar PWR Package), DRM and RDS Based Boundary Monitors, External Transmitters, Telepole II, and MESH Repeater (Telemetry Enabled Devices). An unchangeable, factory-set key is included in the 900 MHz transmitter firmware.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Mirion Technologies ≫ Dmc 3000 Firmware Version-
Mirion Technologies ≫ Telepole Ii Firmware Version-
Mirion Technologies ≫ Rds-31 Itx Firmware Version-
Mirion Technologies ≫ Rsd31-am Firmware Version-
Mirion Technologies ≫ Wrm2 Mesh Repeater Firmware Version-
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.46% | 0.365 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 1.6 | 3.4 |
CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
|
| nvd@nist.gov | 5.4 | 5.5 | 6.4 |
AV:A/AC:M/Au:N/C:P/I:P/A:P
|
CWE-321 Use of Hard-coded Cryptographic Key
The use of a hard-coded cryptographic key significantly increases the possibility that encrypted data may be recovered.
CWE-798 Use of Hard-coded Credentials
The product contains hard-coded credentials, such as a password or cryptographic key.
http://www.securityfocus.com/bid/100001
https://ics-cert.us-cert.gov/advisories/ICSA-17-208-02