CVE-2016-10308

moderate-risk
Published 2017-03-30

Siklu EtherHaul radios before 3.7.1 and 6.x before 6.9.0 have a built-in, hidden root account, with an unchangeable password that is the same across all devices. This account is accessible via both SSH and the device's web interface and grants access to the underlying embedded Linux OS on the device, allowing full control over it.

Do I need to act?

~
2.1% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (2)

Etherhaul Firmware
Etherhaul Firmware

Affected Vendors

Siklu

References (4)

Exploit http://blog.iancaling.com/post/145309944453
Third Party Advisory http://www.securityfocus.com/bid/97243
Exploit http://blog.iancaling.com/post/145309944453
Third Party Advisory http://www.securityfocus.com/bid/97243
44
/ 100
moderate-risk
Severity 32/34 · Critical
Exploitability 5/34 · Minimal
Exposure 7/34 · Low