Vulnerability Details CVE-2017-8218
vsftpd on TP-Link C2 and C20i devices through firmware 0.9.1 4.2 v0032.0 Build 160706 Rel.37961n has a backdoor admin account with the 1234 password, a backdoor guest account with the guest password, and a backdoor test account with the test password.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.7%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
Products affected by CVE-2017-8218
-
cpe:2.3:h:tp-link:c20i:-
-
cpe:2.3:h:tp-link:c2:-
-
cpe:2.3:o:tp-link:c20i_firmware:0.9.1_4.2_v0032.0_build_160706
-
cpe:2.3:o:tp-link:c2_firmware:0.9.1_4.2_v0032.0_build_160706