EUVD-2016-1490

Malware in sbrugna...

EUVD-2016-1491

Malware in sbrugna...

Malicious code in trango (npm)

The package trango was found to contain malicious code...

MAL-2025-37143 Malicious code in trango (npm)

The package trango was found to contain malicious code...

Default Weak Password Vulnerability in Multiple Prologix Trango Products

Prologix Trango Apex Lynx and others are products of Prologix UAE.Apex Lynx is an outdoor microwave backhaul system.Apex Orion is a full-duplex point-to-point radio link for use in the Apex Lynx.The Apex Orion is a full-duplex point-to-point radio link for use in... A security vulnerability exist...

Trango Altum AC600 Device Insecure Default Password Vulnerability

The Trango Altum AC600 is an access point and client device for wireless Ethernet bridging applications and outdoor Wi-Fi/hotspot deployments from Trango Systems, USA. A security vulnerability exists in the Trango Altum AC600 that stems from the root account using 'abcd1234' as the default...

CVE-2016-10307

Trango ApexLynx 2.0, ApexOrion 2.0, GigaLynx 2.0, GigaOrion 2.0, and StrataLink 3.0 devices have a built-in, hidden root account, with a default password for which the MD5 hash value is public but the cleartext value is perhaps not yet public. This account is accessible via SSH and/or TELNET, and...

CVE-2016-10305

Trango Apex = 2.1.1, ApexLynx 2.0, ApexOrion 2.0, ApexPlus = 3.2.0, Giga = 2.6.1, GigaLynx 2.0, GigaOrion 2.0, GigaPlus = 3.2.3, GigaPro = 1.4.1, StrataLink 3.0, and StrataPro devices have a built-in, hidden root account, with a default password that was once stored in cleartext within a software...

CVE-2016-10306

Trango Altum AC600 devices have a built-in, hidden root account, with a default password of abcd1234. This account is accessible via SSH and/or TELNET, and grants access to the underlying embedded UNIX OS on the device, allowing full control over it...

Default credentials

Trango Apex = 2.1.1, ApexLynx 2.0, ApexOrion 2.0, ApexPlus = 3.2.0, Giga = 2.6.1, GigaLynx 2.0, GigaOrion 2.0, GigaPlus = 3.2.3, GigaPro = 1.4.1, StrataLink 3.0, and StrataPro devices have a built-in, hidden root account, with a default password that was once stored in cleartext within a software...

CVE-2016-10307

Trango ApexLynx 2.0, ApexOrion 2.0, GigaLynx 2.0, GigaOrion 2.0, and StrataLink 3.0 devices have a built-in, hidden root account, with a default password for which the MD5 hash value is public but the cleartext value is perhaps not yet public. This account is accessible via SSH and/or TELNET, and...

Default credentials

Trango ApexLynx 2.0, ApexOrion 2.0, GigaLynx 2.0, GigaOrion 2.0, and StrataLink 3.0 devices have a built-in, hidden root account, with a default password for which the MD5 hash value is public but the cleartext value is perhaps not yet public. This account is accessible via SSH and/or TELNET, and...

CVE-2016-10305

Trango Apex = 2.1.1, ApexLynx 2.0, ApexOrion 2.0, ApexPlus = 3.2.0, Giga = 2.6.1, GigaLynx 2.0, GigaOrion 2.0, GigaPlus = 3.2.3, GigaPro = 1.4.1, StrataLink 3.0, and StrataPro devices have a built-in, hidden root account, with a default password that was once stored in cleartext within a software...

Default credentials

Trango Altum AC600 devices have a built-in, hidden root account, with a default password of abcd1234. This account is accessible via SSH and/or TELNET, and grants access to the underlying embedded UNIX OS on the device, allowing full control over it...

CVE-2016-10306

Trango Altum AC600 devices have a built-in, hidden root account, with a default password of abcd1234. This account is accessible via SSH and/or TELNET, and grants access to the underlying embedded UNIX OS on the device, allowing full control over it...

CVE-2016-10305

The CVE-2016-10305 entry affects Trango devices (Apex series, Giga/Strata lines) with a built-in hidden root account and a default password that was once stored in cleartext in a software update package on a Trango FTP server. This account can be accessed via SSH/TELNET and provides access to the...

CVE-2016-10305

Trango Apex = 2.1.1, ApexLynx 2.0, ApexOrion 2.0, ApexPlus = 3.2.0, Giga = 2.6.1, GigaLynx 2.0, GigaOrion 2.0, GigaPlus = 3.2.3, GigaPro = 1.4.1, StrataLink 3.0, and StrataPro devices have a built-in, hidden root account, with a default password that was once stored in cleartext within a software...

CVE-2016-10307

The CVE-2016-10307 entry concerns Trango ApexLynx 2.0, ApexOrion 2.0, GigaLynx 2.0, GigaOrion 2.0, and StrataLink 3.0 embedded devices. A built-in hidden root account with a default password is present; the MD5 hash of that password is public, and the cleartext may not be publicly known. This acc...

CVE-2016-10306

The CVE-2016-10306 entry affects Trango Altum AC600 devices, where a built-in hidden root account uses the default password “abcd1234” and is accessible via SSH/TELNET, granting full control over the embedded UNIX OS. The root account and default credentials enable remote, privileged access witho...

CVE-2016-10307

Trango ApexLynx 2.0, ApexOrion 2.0, GigaLynx 2.0, GigaOrion 2.0, and StrataLink 3.0 devices have a built-in, hidden root account, with a default password for which the MD5 hash value is public but the cleartext value is perhaps not yet public. This account is accessible via SSH and/or TELNET, and...