Lucene search

PRIOn knowledge basePRION:CVE-2022-38394

HistorySep 08, 2022 - 8:15 a.m.

Hardcoded credentials

2022-09-0808:15:00

PRIOn knowledge base

www.prio-n.com

hardcoded credentials

telnet server

centrecom ar260s

firmware vulnerability

remote attacker

arbitrary command execution

9.6 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

71.9%

JSON

Use of hard-coded credentials for the telnet server of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote unauthenticated attacker to execute an arbitrary OS command.

CPENameOperatorVersion
centrecom_ar260s_firmwarelt3.3.7

CPE	Name	Operator	Version
	centrecom_ar260s_firmware	lt	3.3.7

References

jvn.jp/en/jp/JVN45473612/index.html

www.allied-telesis.co.jp/support/list/faq/vuls/20220829.html