Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
talosTalos IntelligenceTALOS-2016-0231
HistoryApr 21, 2017 - 12:00 a.m.

Moxa AWK-3131A Hard-coded Administrator Credentials Vulnerability

2017-04-2100:00:00
Talos Intelligence
www.talosintelligence.com
132

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

60.0%

JSON

Summary

An exploitable Use of Hard-coded Credentials vulnerability exists in the Moxa AWK-3131A Wireless Access Point running firmware 1.1. The device operating system contains an undocumented, privileged (root) account with hard-coded credentials, giving attackers full control of affected devices.

Tested Versions

Moxa AWK-3131A Series Industrial IEEE 802.11a/b/g/n wireless AP/bridge/client 1.1

Product URLs

<http://www.moxa.com/product/AWK-3131A.htm&gt;

CVSSv3 Score

10.0 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Details

An exploitable Use of Hard-coded Credentials vulnerability exists in the Moxa AWK-3131A Series Industrial IEEE 802.11a/b/g/n wireless AP/bridge/client. The device operating system contains an undocumented, privileged (root) account with hard-coded credentials, giving attackers full control of affected devices.

user: 94jo3dkru4
password: moxaiwroot

The device lacks the functionality for legitimate administrators to modify or remove the backdoor account.

Mitigation

Disable all remotely-accessible services, such as SSH and Telnet.

Timeline

2016-11-14 - Vendor Disclosure
2017-04-21 - Public Release

Related

nvd 1
seebug 1
cve 1
nessus 1
cvelist 1
talos 1
prion 1
nvd
nvd
CVE-2016-8717
2018-04-02 17:29:00
seebug
seebug
Moxa AWK-3131A Hard-coded Administrator Credentials Vulnerability(CVE-2016-8717)
2017-09-19 00:00:00
cve
cve
CVE-2016-8717
2018-04-02 17:29:00
nessus
nessus
Moxa AWK-3131A Hard-coded Administrator Credentials (CVE-2016-8717)
2023-08-02 00:00:00
cvelist
cvelist
CVE-2016-8717
2017-04-21 00:00:00
talos
talos
Moxa AWK-3131A Hard-coded Administrator Credentials Vulnerability
2017-04-21 00:00:00
prion
prion
Hardcoded credentials
2018-04-02 17:29:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

60.0%

JSON
Related for TALOS-2016-0231
nvd1seebug1cve1nessus1cvelist1talos1prion1