CVE-2023-53983
Unknown
Unknown - Not Provided
Weak Default Credentials in Anevia Flamingo Enable Remote Control
Publication date: 2025-12-30
Last updated on: 2025-12-30
Assigner: VulnCheck
Description
Description
Anevia Flamingo XL/XS 3.6.20 contains a critical vulnerability with weak default administrative credentials that can be easily guessed. Attackers can leverage these hard-coded credentials to gain full remote system control without complex authentication mechanisms.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| anevia | flamingo | 3.6.20 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-798 | The product contains hard-coded credentials, such as a password or cryptographic key. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in Anevia Flamingo XL/XS 3.6.20 and involves weak default administrative credentials that are hard-coded and easily guessed. Attackers can exploit these credentials to gain full remote control of the system without needing complex authentication.
How can this vulnerability impact me? :
The vulnerability allows attackers to remotely take full control of the affected system without complex authentication. This can lead to unauthorized access, potential manipulation or disruption of services, and compromise of system integrity.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70