Download the Gigaset Firmware Vulnerabilities Report by entering your e-mail below and be cyber informed!

❗ Fresh from Binare’s “IoT firmware analysis platform” : NEW one HIGH CVSSv3 + NEW two MEDium CVSSv3 + SBoM with 112 software components exposing at least 1544 potential vulnerabilities ❗

***

#CVSS #HIGH #HardcodedKeys #AES

/swupdate/etc/max3b_key.aes

1 Key (128 bit):
2 30:63:35:39:39:30:39:35:61:39:37:34:35:34:31:37
3
4 —–BEGIN AES KEY—–
5 0c599095a9745417

***

#CVSS #MEDIUM #HardcodedPasswords #ZIP

/www/pages/conf/conf.php

49 define(‘WEBPASSFILE’, ‘webset.txt’);
50 define(‘ZIPPASSWORD’, ‘B5JV4bZJeaExUr3y’);
51 define(‘ZIPPASSWORDSYSDUMP’, ‘7eP2f2hbXSgsjA5P’);

***

#CVSS #MEDIUM #HardcodedAccounts #EtcPasswd

ruth::0:0:developer root account:/tmp/root:/bin/sh

***

Security Advisory By Binare Team For Gigaset Devices

Like this:

Leave a Reply Cancel reply

Follow Us

Share this:

Like this:

Leave a Reply Cancel reply

Follow Us