Rapid7 Vulnerability & Exploit Database

Alpine Linux: CVE-2020-29059: Use of Hard-coded Credentials

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Alpine Linux: CVE-2020-29059: Use of Hard-coded Credentials

Severity
7
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
11/24/2020
Created
08/23/2024
Added
08/22/2024
Modified
08/23/2024

Description

An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices. There is a default panger123 password for the suma123 account for certain old firmware.

Solution(s)

  • alpine-linux-upgrade-sphinx

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;