Morpho Itemiser 3 Hard-Coded Credential
Low RiskICS-CERT ICSA-14-205-01Apr 26, 2014
Summary
Morpho Itemiser 3 devices contain hard-coded credentials that allow authentication to the management interface. An attacker with network access could use these credentials to gain control of the explosive detection system.
What this means
What could happen
An attacker with network access to an Itemiser 3 device could log in using hard-coded credentials, gaining control of the explosive detection system and potentially disabling detection capabilities or altering operational parameters.
Who's at risk
This affects operators and security teams responsible for explosive detection systems, such as those deployed at airports, ports, customs checkpoints, and other high-security facilities that use Morpho Itemiser 3 equipment for baggage and cargo screening.
How it could be exploited
An attacker on the network sends login requests to the Itemiser 3 management interface using the hard-coded username and password. Once authenticated, the attacker can access the device's configuration and operational controls.
Prerequisites
- Network access to the Itemiser 3 device management port
- Hard-coded credentials (username and password)
- Device running affected version v8.17
hard-coded credentialsno patch availableremotely exploitablelow complexity
Exploitability
Low exploit probability (EPSS 0.6%)
Affected products (1)
ProductAffected VersionsFix Status
Itemiser 3: v8.17v8.17No fix (EOL)
Remediation & Mitigation
0/3
Do now
0/2WORKAROUNDImplement network segmentation or firewall rules to restrict access to Itemiser 3 management interfaces to authorized workstations only
HARDENINGChange the hard-coded credentials if the device interface allows local credential modification
Mitigations - no patch available
0/1Itemiser 3: v8.17 has reached End of Life. The vendor will not release a patch. Apply the following compensating controls:
HARDENINGMonitor network logs and authentication attempts to the Itemiser 3 device for suspicious activity
CVEs (1)
โโ Navigate ยท Esc Close
API:
/api/v1/advisories/aa9aa237-9121-42f2-b12b-6012e68d52ec