cvedb.io
CVE-2018-12072
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2018-06-17T20:29:00.587 · Last modified 2026-06-17T01:37:06.207

Summary

An issue was discovered in Cloud Media Popcorn A-200 03-05-130708-21-POP-411-000 firmware. It is configured to provide TELNET remote access (without a password) that pops a shell as root. If an attacker can connect to port 23 on the device, he can completely compromise it.

Affected products

cloudmedia — popcorn_a-200_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when cloudmedia ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.