Ge: >> Mu320e Firmware Security Vulnerabilities
A miscommunication in the file system allows adversaries with access to the MU320E to escalate privileges on the MU320E (all firmware versions prior to v04A00.1).
CVSS Score
7.8
EPSS Score
0.0
Published
2021-03-25
SSH server configuration file does not implement some best practices. This could lead to a weakening of the SSH protocol strength, which could lead to additional misconfiguration or be leveraged as part of a larger attack on the MU320E (all firmware versions prior to v04A00.1).
CVSS Score
7.8
EPSS Score
0.0
Published
2021-03-25
The software contains a hard-coded password that could allow an attacker to take control of the merging unit using these hard-coded credentials on the MU320E (all firmware versions prior to v04A00.1).
CVSS Score
7.8
EPSS Score
0.0
Published
2021-03-25