Verint 4320 Firmware vulnerabilities
2 known vulnerabilities affecting verint/4320_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2020-24055P3CRITICALCVSS 9.8vv4320_fw_0_23vv4320_fw_0_312020-08-21
CVE-2020-24055 [CRITICAL] CWE-787 CVE-2020-24055: Verint 5620PTZ Verint_FW_0_42 and Verint 4320 V4320_FW_0_23, and V4320_FW_0_31 units feature an auto
Verint 5620PTZ Verint_FW_0_42 and Verint 4320 V4320_FW_0_23, and V4320_FW_0_31 units feature an autodiscovery service implemented in the binary executable '/usr/sbin/DM' that listens on port TCP 6666. The service is vulnerable to a stack buffer overflow. It is worth noting that this service does not require any authentication.
nvd
CVE-2020-24056P3HIGHCVSS 7.5vv4320_fw_0_23vv4320_fw_0_312020-08-21
CVE-2020-24056 [HIGH] CWE-798 CVE-2020-24056: A hardcoded credentials vulnerability exists in Verint 5620PTZ Verint_FW_0_42, Verint 4320 V4320_FW_
A hardcoded credentials vulnerability exists in Verint 5620PTZ Verint_FW_0_42, Verint 4320 V4320_FW_0_23, V4320_FW_0_31, and Verint S5120FD Verint_FW_0_42units. This could cause a confidentiality issue when using the FTP, Telnet, or SSH protocols.
nvd