Vulnerability Description
BB-ESWGP506-2SFP-T versions 1.01.09 and prior is vulnerable due to the use of hard-coded credentials, which may allow an attacker to gain unauthorized access and permit the execution of arbitrary code on the BB-ESWGP506-2SFP-T (versions 1.01.01 and prior).
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Advantech | Bb-Eswgp506-2Sfp-T Firmware | <= 1.01.09 |
| Advantech | Bb-Eswgp506-2Sfp-T | - |
Related Weaknesses (CWE)
References
- https://us-cert.cisa.gov/ics/advisories/icsa-21-054-02MitigationThird Party AdvisoryUS Government Resource
- https://www.zerodayinitiative.com/advisories/ZDI-21-593/Third Party AdvisoryVDB Entry
- https://us-cert.cisa.gov/ics/advisories/icsa-21-054-02MitigationThird Party AdvisoryUS Government Resource
- https://www.zerodayinitiative.com/advisories/ZDI-21-593/Third Party AdvisoryVDB Entry
FAQ
What is CVE-2021-22667?
CVE-2021-22667 is a vulnerability with a CVSS score of 9.8 (CRITICAL). BB-ESWGP506-2SFP-T versions 1.01.09 and prior is vulnerable due to the use of hard-coded credentials, which may allow an attacker to gain unauthorized access and permit the execution of arbitrary code...
How severe is CVE-2021-22667?
CVE-2021-22667 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2021-22667?
Check the references section above for vendor advisories and patch information. Affected products include: Advantech Bb-Eswgp506-2Sfp-T Firmware, Advantech Bb-Eswgp506-2Sfp-T.