Vulnerability Details CVE-2021-28912
BAB TECHNOLOGIE GmbH eibPort V3. Each device has its own unique hard coded and weak root SSH key passphrase known as 'eibPort string'. This is usable and the final part of an attack chain to gain SSH root access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.2%
CVSS Severity
CVSS v3 Score 7.2
CVSS v2 Score 9.0
Products affected by CVE-2021-28912
-
cpe:2.3:h:bab-technologie:eibport:v3
-
cpe:2.3:o:bab-technologie:eibport_firmware:3.8.2
-
cpe:2.3:o:bab-technologie:eibport_firmware:3.8.3