CVE-2013-7248

Name of the Vulnerable Software and Affected Versions Franklin Fueling Systems TS-550 evo versions prior to 2.4.0

Description The issue allows remote attackers to gain root privileges due to a hardcoded password for the roleDiag account. This can be exploited using a cmdWebCheckRole action in a TSA REQUEST.

Recommendations For versions prior to 2.4.0, update to version 2.4.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the roleDiag account to minimize the risk of exploitation.