CVE-2021-34565
published 2021-08-31CVE-2021-34565: In PEPPERL+FUCHS WirelessHART-Gateway 3.0.7 to 3.0.9 the SSH and telnet services are active with hard-coded credentials.
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
In PEPPERL+FUCHS WirelessHART-Gateway 3.0.7 to 3.0.9 the SSH and telnet services are active with hard-coded credentials.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| pepperl-fuchs | wha-gw-f2d2-0-as-z2-eth.eip_firmware | 3.0.7 – 3.0.9 | — |
| pepperl-fuchs | wha-gw-f2d2-0-as-z2-eth_firmware | 3.0.7 – 3.0.9 | — |
| phoenix_contact | wha-gw-f2d2-0-as_z2-eth | >= 3.0.7 < 3.0.7* | 3.0.7* |
| phoenix_contact | wha-gw-f2d2-0-as_z2-eth | 3.0.9 – 3.0.9 | — |
| phoenix_contact | wha-gw-f2d2-0-as_z2-eth.eip | >= 3.0.7 < 3.0.7* | 3.0.7* |
| phoenix_contact | wha-gw-f2d2-0-as_z2-eth.eip | 3.0.9 – 3.0.9 | — |