CVE-2016-10305

moderate-risk
Published 2017-03-30

Trango Apex <= 2.1.1, ApexLynx < 2.0, ApexOrion < 2.0, ApexPlus <= 3.2.0, Giga <= 2.6.1, GigaLynx < 2.0, GigaOrion < 2.0, GigaPlus <= 3.2.3, GigaPro <= 1.4.1, StrataLink < 3.0, and StrataPro devices have a built-in, hidden root account, with a default password that was once stored in cleartext within a software update package on a Trango FTP server. This account is accessible via SSH and/or TELNET, and grants access to the underlying embedded UNIX OS on the device, allowing full control over it.

Do I need to act?

-
0.37% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (11)

Apex Plus Firmware
Apex Orion Firmware
Giga Lynx Firmware
Apex Firmware
Apex Lynx Firmware
Giga Firmware
Giga Orion Firmware
Giga Plus Firmware
Giga Pro Firmware
Stratalink Pro Firmware
Stratalink Firmware

Affected Vendors

Gotrango

References (2)

Exploit http://blog.iancaling.com/post/153011925478
Exploit http://blog.iancaling.com/post/153011925478
49
/ 100
moderate-risk
Severity 32/34 · Critical
Exploitability 1/34 · Minimal
Exposure 16/34 · Moderate