Vulnerability Description
TRENDnet TEW-823DRU devices with firmware before 1.00b36 have a hardcoded password of kcodeskcodes for the root account, which makes it easier for remote attackers to obtain access via an FTP session.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Trendnet | Tew-823Dru Firmware | <= 1.00b30 |
| Trendnet | Tew-823Dru | - |
Related Weaknesses (CWE)
References
- http://hackingcomtapioca.blogspot.com.br/2014/10/hacking-trendnet-tew-823dru.htmIssue TrackingThird Party Advisory
- http://hackingcomtapioca.blogspot.com.br/2014/10/hacking-trendnet-tew-823dru.htmIssue TrackingThird Party Advisory
FAQ
What is CVE-2014-8579?
CVE-2014-8579 is a vulnerability with a CVSS score of 9.8 (CRITICAL). TRENDnet TEW-823DRU devices with firmware before 1.00b36 have a hardcoded password of kcodeskcodes for the root account, which makes it easier for remote attackers to obtain access via an FTP session.
How severe is CVE-2014-8579?
CVE-2014-8579 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2014-8579?
Check the references section above for vendor advisories and patch information. Affected products include: Trendnet Tew-823Dru Firmware, Trendnet Tew-823Dru.