CVE-2022-25569

2022-04-0417:23:45

mitre

www.cve.org

9.7 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.2%

JSON

Bettini Srl GAMS Product Line v4.3.0 was discovered to re-use static SSH keys across installations, allowing unauthenticated attackers to login as root users via extracting a key from the software.

References

www.andreabruschi.net/2022/02/17/bettini-s-r-l-sgsetup-hard-coded-ssh-private-key/