Security Advisory

CVE-2023-36380

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-10 10:21:21

Last updated 2025-02-27 20:46:08

Assigner siemens

State PUBLISHED

Description

A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05.11 (only with activated debug support)), CP-8050 MASTER MODULE (All versions < CPCI85 V05.11 (only with activated debug support)). The affected devices contain a hard-coded ID in the SSH `authorized_keys` configuration file. An attacker with knowledge of the corresponding private key could login to the device via SSH. Only devices with activated debug support are affected.

← Browse all CVEs View on cve.org ↗