exploitDog

CVE-2021-27169

Опубликовано: 10 фев. 2021

Источник: nvd

CVSS3: 9.8

CVSS2: 5

EPSS Низкий

Описание

An issue was discovered on FiberHome AN5506-04-FA devices with firmware RP2631. There is a gepon password for the gepon account.

Ссылки

https://pierrekim.github.io/blog/2021-01-12-fiberhome-ont-0day-vulnerabilities.html#telnet-linux-hardcoded-credentials
Exploit
Third Party Advisory
https://pierrekim.github.io/blog/2021-01-12-fiberhome-ont-0day-vulnerabilities.html#telnet-linux-hardcoded-credentials
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:fiberhome:an5506-04-fa_firmware:rp2631:*:*:*:*:*:*:*

cpe:2.3:h:fiberhome:an5506-04-fa:-:*:*:*:*:*:*:*

EPSS

Процентиль: 70%

0.00639

Низкий

9.8 Critical

CVSS3

5 Medium

CVSS2

Дефекты

CWE-798

Связанные уязвимости

GHSA-3267-pg8g-jq86

github

больше 3 лет назад

An issue was discovered on FiberHome AN5506-04-FA devices with firmware RP2631. There is a gepon password for the gepon account.

EPSS

Процентиль: 70%

0.00639

Низкий

9.8 Critical

CVSS3

5 Medium

CVSS2

Дефекты

CWE-798