CVE-2021-27172

CVE-2021-27172

EPSS 19.8%

An issue was discovered on FiberHome HG6245D devices through RP2613. A hardcoded GEPON password for root is defined inside /etc/init.d/system-config.sh.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://pierrekim.github.io/blog/2021-01-12-fiberhome-ont-0day-vulnerabilities.html#telnet-linux-hardcoded-credentials