The Linux firmware image on (1) Korenix Jetport 5600 series serial-device servers and (2) ORing Industrial DIN-Rail serial-device servers has a hardcoded password of password for the root account, which allows remote attackers to obtain administrative access via an SSH session.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Jetport | Korenix | 5604i | 5604i |
Jetport | Korenix | 5601f | 5601f |
Jetport | Korenix | 5601 | 5601 |
Jetport | Korenix | 5604 | 5604 |