The SysLINK SL-1000 M2M (Machine-to-Machine) Modular Gateway contains multiple vulnerabilities.
According to the researcher, the SysLINK SL-1000 M2M Modular Gateway contains multiple vulnerabilities:
CWE-259: Use of Hard-coded Password - CVE-2016-2331
An unauthenticated remote attacker with knowledge of the password may obtain root access to the device.
Apply an update
Restrict Network Access
Thanks to Roman Faynberg and Jeremy Allen of Carve Systems for reporting this vulnerability.
This document was written by Garret Wassermann.