CVE-2016-1560

ExaGrid appliances with firmware before 4.8 P26 have a default password of (1) inflection for the root shell account and (2) support for the support account in the web interface, which allows remote attackers to obtain administrative access via an SSH or HTTP session.

Published: Apr 21, 2017
Updated: Apr 13, 2023
CVE: CVE-2016-1560
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-798

Affected Software
References

Software	From	Fixed in
exagrid / ex3000_firmware	4.8	4.8.x
exagrid / ex5000_firmware	4.8	4.8.x
exagrid / ex7000_firmware	4.8	4.8.x
exagrid / ex10000e_firmware	4.8	4.8.x
exagrid / ex13000e_firmware	4.8	4.8.x
exagrid / ex21000e_firmware	4.8	4.8.x
exagrid / ex32000e_firmware	4.8	4.8.x
exagrid / ex40000e_firmware	4.8	4.8.x

http://packetstormsecurity.com/files/136634/ExaGrid-Known-SSH-Key-Default-Password.html
http://www.rapid7.com/db/modules/exploit/linux/ssh/exagrid_known_privkey
https://community.rapid7.com/community/infosec/blog/2016/04/07/r7-2016-04-exagrid-backdoor-ssh-keys-and-hardcoded-credentials

Vulnerability Database

289,697

CVE-2016-1560