Vulnerability Note VU#822980
SysLINK M2M Modular Gateway contains multiple vulnerabilities
The SysLINK SL-1000 M2M (Machine-to-Machine) Modular Gateway contains multiple vulnerabilities.
According to the researcher, the SysLINK SL-1000 M2M Modular Gateway contains multiple vulnerabilities:
CWE-259: Use of Hard-coded Password - CVE-2016-2331
An unauthenticated remote attacker with knowledge of the password may obtain root access to the device.
Apply an update
Restrict Network Access
Vendor Information (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Systech||Affected||17 Apr 2016||22 Apr 2016|
CVSS Metrics (Learn More)
Thanks to Roman Faynberg and Jeremy Allen of Carve Systems for reporting this vulnerability.
This document was written by Garret Wassermann.
- CVE IDs: CVE-2016-2331 CVE-2016-2332 CVE-2016-2333
- Date Public: 22 Apr 2016
- Date First Published: 22 Apr 2016
- Date Last Updated: 22 Apr 2016
- Document Revision: 28
If you have feedback, comments, or additional information about this vulnerability, please send us email.