Lucene search
K

8 matches found

Zero Day Initiative
Zero Day Initiative
added 2021/05/25 12:0 a.m.39 views

Advantech BB-ESWGP506-2SFP-T Use of Hard-coded Credentials Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Advantech BB-ESWGP506-2SFP-T industrial switches. Authentication is not required to exploit this vulnerability. The specific flaw exists within the telnet service, which listens on TCP port 23 by...

9.8CVSS3.7AI score0.03612EPSS
Exploits0References1
CNVD
CNVD
added 2021/03/01 12:0 a.m.13 views

Advantech BB-ESWGP506-2SFP-T Hardcoded Vulnerability

The Advantech BB-ESWGP506-2SFP-T is an application from CHAAdvantech that provides an intelligent electric bus management system. A hard-coded vulnerability in the Advantech BB-ESWGP506-2SFP-T allows remote attackers to exploit the vulnerability to submit a special request, gain unauthorized acce...

10CVSS7.1AI score0.03612EPSS
Exploits0References1
NVD
NVD
added 2021/02/24 5:15 p.m.41 views

CVE-2021-22667

BB-ESWGP506-2SFP-T versions 1.01.09 and prior is vulnerable due to the use of hard-coded credentials, which may allow an attacker to gain unauthorized access and permit the execution of arbitrary code on the BB-ESWGP506-2SFP-T versions 1.01.01 and prior...

10CVSS0.03612EPSS
Exploits0References2
OSV
OSV
added 2021/02/24 5:15 p.m.11 views

CVE-2021-22667

BB-ESWGP506-2SFP-T versions 1.01.09 and prior is vulnerable due to the use of hard-coded credentials, which may allow an attacker to gain unauthorized access and permit the execution of arbitrary code on the BB-ESWGP506-2SFP-T versions 1.01.01 and prior...

9.8CVSS7.6AI score0.03612EPSS
Exploits0References2
Prion
Prion
added 2021/02/24 5:15 p.m.13 views

Hardcoded credentials

BB-ESWGP506-2SFP-T versions 1.01.09 and prior is vulnerable due to the use of hard-coded credentials, which may allow an attacker to gain unauthorized access and permit the execution of arbitrary code on the BB-ESWGP506-2SFP-T versions 1.01.01 and prior...

10CVSS9.7AI score0.03612EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/02/24 4:1 p.m.41 views

CVE-2021-22667

BB-ESWGP506-2SFP-T versions 1.01.09 and prior is vulnerable due to the use of hard-coded credentials, which may allow an attacker to gain unauthorized access and permit the execution of arbitrary code on the BB-ESWGP506-2SFP-T versions 1.01.01 and prior...

9.9AI score0.03612EPSS
Exploits0References2
CVE
CVE
added 2021/02/24 4:1 p.m.60 views

CVE-2021-22667

CVE-2021-22667 affects Advantech BB-ESWGP506-2SFP-T industrial switches (versions 1.01.09 and prior). The root cause is hard-coded credentials in the device, enabling unauthorized access and arbitrary code execution. ZDI specifies exploitation via the telnet service (port 23) with a hard-coded ad...

10CVSS9.7AI score0.03612EPSS
Exploits0References2Affected Software1
ICS
ICS
added 2021/02/23 12:0 a.m.59 views

Advantech BB-ESWGP506-2SFP-T

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Advantech Equipment: BB-ESWGP506-2SFP-T Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to gain unauthorized...

10CVSS10AI score0.03612EPSS
Exploits0References5
Rows per page
Query Builder