Hardcoded SSH Credentials Vulnerability on WatchGuard AP Devices

Hardcoded SSH Credentials Vulnerability on WatchGuard AP Devices

CVE-2018-10575 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

An issue was discovered on WatchGuard AP100, AP102, and AP200 devices with firmware before 1.2.9.15. Hardcoded credentials exist for an unprivileged SSH account with a shell of /bin/false.

Learn more about our Web Application Penetration Testing UK.