ExaGrid appliances with firmware prior to 4.8 P26 have a default SSH public key in the authorized_keys file for root, which allows remote malicious users to obtain SSH access by leveraging knowledge of a private key from another installation or a firmware image.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
exagrid ex3000_firmware 4.8 |
||
exagrid ex5000_firmware 4.8 |
||
exagrid ex7000_firmware 4.8 |
||
exagrid ex10000e_firmware 4.8 |
||
exagrid ex13000e_firmware 4.8 |
||
exagrid ex21000e_firmware 4.8 |
||
exagrid ex32000e_firmware 4.8 |
||
exagrid ex40000e_firmware 4.8 |