An issue was discovered in Peplink Balance Two before 8.4.0. Console port authentication uses hard-coded credentials, which allows an attacker with physical access and sufficient knowledge to execute arbitrary commands as root.
CPE | Name | Operator | Version |
---|---|---|---|
balance_two_firmware | lt | 8.4.0 |