Hardcoded credentials

2020-03-2419:15:00

PRIOn knowledge base

www.prio-n.com

8 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.9%

JSON

In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 series firmware, Version 3.9 or lower, the affected products use a hard-coded cryptographic key, which increases the possibility that confidential data can be recovered.

CPENameOperatorVersion
pt-7528-12msc-12tx-4gsfp-hv-hv_firmwarele4.0
pt-7528-12msc-12tx-4gsfp-hv_firmwarele4.0
pt-7528-12msc-12tx-4gsfp-wv-wv_firmwarele4.0
pt-7528-12msc-12tx-4gsfp-wv_firmwarele4.0
pt-7528-12mst-12tx-4gsfp-hv-hv_firmwarele4.0
pt-7528-12mst-12tx-4gsfp-hv_firmwarele4.0
pt-7528-12mst-12tx-4gsfp-wv-wv_firmwarele4.0
pt-7528-12mst-12tx-4gsfp-wv_firmwarele4.0
pt-7528-16msc-8tx-4gsfp-hv-hv_firmwarele4.0
pt-7528-16msc-8tx-4gsfp-hv_firmwarele4.0

Name	Operator	Version
pt-7528-12msc-12tx-4gsfp-hv-hv_firmware	le	4.0
pt-7528-12msc-12tx-4gsfp-hv_firmware	le	4.0
pt-7528-12msc-12tx-4gsfp-wv-wv_firmware	le	4.0
pt-7528-12msc-12tx-4gsfp-wv_firmware	le	4.0
pt-7528-12mst-12tx-4gsfp-hv-hv_firmware	le	4.0
pt-7528-12mst-12tx-4gsfp-hv_firmware	le	4.0
pt-7528-12mst-12tx-4gsfp-wv-wv_firmware	le	4.0
pt-7528-12mst-12tx-4gsfp-wv_firmware	le	4.0
pt-7528-16msc-8tx-4gsfp-hv-hv_firmware	le	4.0
pt-7528-16msc-8tx-4gsfp-hv_firmware	le	4.0