Baicells Nova 227, Nova 233, and Nova 243 LTE TDD eNodeB devices with firmware through RTS/RTD 3.7.11.3 have hardcoded credentials that are easily discovered and can be used by remote attackers to authenticate via ssh. (The credentials are stored in the firmware, encrypted by the crypt function.)
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Baicells

Published: 2023-01-24T15:51:17.731Z

Updated: 2024-08-02T10:49:08.917Z

Reserved: 2023-01-20T19:38:53.748Z

Link: CVE-2023-24022

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-01-26T21:18:15.593

Modified: 2024-11-21T07:47:16.470

Link: CVE-2023-24022

cve-icon Redhat

No data.