CVE Vulnerabilities

CVE-2012-4577

Published: Aug 21, 2012 | Modified: Aug 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

The Linux firmware image on (1) Korenix Jetport 5600 series serial-device servers and (2) ORing Industrial DIN-Rail serial-device servers has a hardcoded password of password for the root account, which allows remote attackers to obtain administrative access via an SSH session.

Affected Software

Name Vendor Start Version End Version
Jetport Korenix 5604i 5604i
Jetport Korenix 5601f 5601f
Jetport Korenix 5601 5601
Jetport Korenix 5604 5604

References