2024-6-24 Hard Coded Credentials Vulnerability in EP3011 Snap Router Series

Gregg Williams
Gregg Williams
  • Updated

First Published:

2024 June 24

Last Updated:

2024 June 24

Workarounds:

Upgrade to BaiCE_BMI_1.3.5.10_NAC or newer

Summary:

Baicells EP3011 Snap Router devices with firmware older than BaiCE_BMI_1.3.5.10_NAC are vulnerable to hard coded credential vulnerabilities. Successful execution of the vulnerability allows unauthenticated remote user login via ssh/telnet (which is started during the system boot).

 

Full details of the CVE can be reviewed here:CVE-2023-6198

Affected Products: 

  • EP3011 

Resolution:

Baicells has resolved this vulnerability in software version BaiCE_BMI_1.3.5.10_NAC and later. Baicells recommends that all customers running an earlier version of BaiCE_BMI firmware upgrade their products to the BaiCE_BMI_1.3.5.10_NAC firmware. Firmware can be downloaded from our community page or upgraded via OMC. 

 

Was this article helpful?

/

Comments

0 comments

Article is closed for comments.