Osprey.Pump.Controller.Administrator.Backdoor
Description
This indicates detection of a Backdoor Access in Osprey Pump Controller.
The vulnerability is due to a default factory account in the device. Remote attackers can obtain access to the device with this account.
Affected Products
Software Build ID 20211018, Production 10/18/2021
Mirage App: MirageAppManager, Release [1.0.1]
Mirage Model 1, RetroBoard II
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Currently we are unaware of any vendor supplied patch for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |