CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-27172

An issue was discovered on FiberHome HG6245D devices through RP2613. A hardcoded GEPON password for root is defined inside /etc/init.d/system-config.sh.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 44.2%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 5.0

References

https://pierrekim.github.io/blog/2021-01-12-fiberhome-ont-0day-vulnerabilities.html#telnet-linux-hardcoded-credentials
https://pierrekim.github.io/blog/2021-01-12-fiberhome-ont-0day-vulnerabilities.html#telnet-linux-hardcoded-credentials

Products affected by CVE-2021-27172

Fiberhome » Hg6245d » Version: N/A

cpe:2.3:h:fiberhome:hg6245d:-
Fiberhome » Hg6245d Firmware » Version: rp2613

cpe:2.3:o:fiberhome:hg6245d_firmware:rp2613

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-27172

Products

Pricing

Contact Us