Weak Default Root Credentials in System Management Module (SMM) Versions Prior to 1.06

Weak Default Root Credentials in System Management Module (SMM) Versions Prior to 1.06

CVE-2018-9083 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

In System Management Module (SMM) versions prior to 1.06, the SMM contains weak default root credentials which could be used to log in to the device OS -- if the attacker manages to enable SSH or Telnet connections via some other vulnerability.

Learn more about our Web Application Penetration Testing UK.