CVE-2016-4520

critical

Description

Schneider Electric Pelco Digital Sentry Video Management System with firmware before 7.14 has hardcoded credentials, which allows remote attackers to obtain access, and consequently execute arbitrary code, via unspecified vectors.

References

https://ics-cert.us-cert.gov/advisories/ICSA-16-196-01

http://www.securityfocus.com/bid/91783

http://www.schneider-electric.com/ww/en/download/document/SEVD-2016-153-01

Details

Source: Mitre, NVD

Published: 2016-07-15

Updated: 2026-05-06

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.02714