Exagrid Ex10000E Firmware vulnerabilities
2 known vulnerabilities affecting exagrid/ex10000e_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2016-1560P1CRITICALCVSS 9.8PoCv4.82017-04-21
CVE-2016-1560 [CRITICAL] CWE-798 CVE-2016-1560: ExaGrid appliances with firmware before 4.8 P26 have a default password of (1) inflection for the ro
ExaGrid appliances with firmware before 4.8 P26 have a default password of (1) inflection for the root shell account and (2) support for the support account in the web interface, which allows remote attackers to obtain administrative access via an SSH or HTTP session.
nvd
CVE-2016-1561P2HIGHCVSS 7.5PoCv4.82017-04-21
CVE-2016-1561 [HIGH] CWE-200 CVE-2016-1561: ExaGrid appliances with firmware before 4.8 P26 have a default SSH public key in the authorized_keys
ExaGrid appliances with firmware before 4.8 P26 have a default SSH public key in the authorized_keys file for root, which allows remote attackers to obtain SSH access by leveraging knowledge of a private key from another installation or a firmware image.
nvd