Описание
A support user exists on the device and appears to be a backdoor for Technical Support staff. The default password for this account is “support” and cannot be changed by a user via any normally accessible means.
Ссылки
- ExploitPatchThird Party Advisory
- ExploitPatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.0.9.90 (исключая)
Одновременно
cpe:2.3:o:netgear:rax30_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rax30:-:*:*:*:*:*:*:*
EPSS
Процентиль: 41%
0.00192
Низкий
8.8 High
CVSS3
Дефекты
CWE-287
CWE-287
Связанные уязвимости
CVSS3: 8.8
github
больше 2 лет назад
A support user exists on the device and appears to be a backdoor for Technical Support staff. The default password for this account is “support” and cannot be changed by a user via any normally accessible means.
EPSS
Процентиль: 41%
0.00192
Низкий
8.8 High
CVSS3
Дефекты
CWE-287
CWE-287