Security Advisory

CVE-2022-22144

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-08-05 21:11:47

Last updated 2025-04-15 18:58:31

Assigner talos

State PUBLISHED

Description

A hard-coded password vulnerability exists in the libcommonprod.so prod_change_root_passwd functionality of TCL LinkHub Mesh Wi-Fi MS1G_00_01.00_14. During system startup this functionality is always called, leading to a known root password. An attacker does not have to do anything to trigger this vulnerability.

← Browse all CVEs View on cve.org ↗