Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2017/05/21 9:29 p.m.2 views

CVE-2017-9137

Ceragon FibeAir IP-10 wireless radios through 7.2.0 have a default password of mateidu for the mateidu account a hidden user account established by the vendor. This account can be accessed via both the web interface and SSH. In the web interface, this simply grants an attacker read-only access to...

7.3CVSS5.8AI score0.00282EPSS
Exploits0References1
Prion
Prionadded 2017/05/21 9:29 p.m.13 views

Default credentials

Ceragon FibeAir IP-10 wireless radios through 7.2.0 have a default password of mateidu for the mateidu account a hidden user account established by the vendor. This account can be accessed via both the web interface and SSH. In the web interface, this simply grants an attacker read-only access to...

7.5CVSS7.2AI score0.00282EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2017/05/21 9:0 p.m.42 views

CVE-2017-9137

CVE-2017-9137 affects Ceragon FibeAir IP-10 wireless radios up to version 7.2.0, where the hidden mateidu account has a default password. The mateidu account can be accessed via both the web interface (read-only access) and SSH (Linux shell access), enabling an attacker to reach device settings o...

7.5CVSS7.2AI score0.00282EPSS
Exploits0References1Affected Software1
0day.today
0day.todayadded 2017/05/20 12:0 a.m.42 views

Ceragon FibeAir IP-10 7.2.0 Hidden User Backdoor Vulnerability

Exploit for hardware platform in category web applications + Credits: Ian Ling + Website: iancaling.com + Source: http://blog.iancaling.com/post/160817658078 Vendor: ================= https://www.ceragon.com Products: ====================== Ceragon FibeAir IP-10 =7.2.0 latest version Vulnerabilit...

7.5CVSS9.2AI score0.86318EPSS
Exploits10
Packet Storm
Packet Stormadded 2015/04/02 12:0 a.m.64 views

Ceragon FibeAir IP-10 SSH Private Key Exposure

Ceragon FibeAir IP-10 SSH Private Key Exposure CVE-2015-0936 Product Description Ceragon produces a series of ruggedized, microwave backhaul devices used to provide connectivity to mobile, IP-based devices; usually, these devices are found in either large industrial environments, or installed on...

7.8CVSS0.5AI score0.86318EPSS
Exploits10
Packet Storm
Packet Stormadded 2015/04/02 12:0 a.m.29 views

Ceragon FibeAir IP-10 SSH Private Key Exposure

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'net/ssh' class Metasploit3 'Ceragon FibeAir IP-10 SSH Private Key Exposure', 'Description' = %q Ceragon ships a public/private key pair on...

4.1CVSS0.2AI score0.86318EPSS
Exploits10
Metasploit
Metasploitadded 2015/04/01 7:5 p.m.51 views

Ceragon FibeAir IP-10 SSH Private Key Exposure

Ceragon ships a public/private key pair on FibeAir IP-10 devices that allows passwordless authentication to any other IP-10 device. Since the key is easily retrievable, an attacker can use it to gain unauthorized remote access as the "mateidu" user. This module requires Metasploit:...

9.8CVSS9.8AI score0.86318EPSS
Exploits10
Rows per page
Query Builder