Hard-coded Password Vulnerability in Reason DR60 Firmware

Hard-coded Password Vulnerability in Reason DR60 Firmware

CVE-2021-27438 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

The software contains a hard-coded password it uses for its own inbound authentication or for outbound communication to external components on the Reason DR60 (all firmware versions prior to 02A04.1).

Learn more about our External Network Penetration Testing.