Gajshield · Gajshield Data Security Firewall · CVE-2023-1778
**Name of the Vulnerable Software and Affected Versions**
GajShield Data Security Firewall versions prior to v4.28 (except v4.21)
**Description**
This issue exists due to insecure default credentials, allowing a remote attacker to login as a superuser by using the default username and password via the web-based management interface and/or exposed SSH port. This enables remote attackers to execute arbitrary commands with administrative privileges on the targeted systems.
**Recommendations**
For versions prior to v4.28 (except v4.21), the vulnerability has been addressed by forcing the user to change their default password to a new non-default password.