CVE-2019-9975

Name of the Vulnerable Software and Affected Versions DASAN H660RM devices with firmware 1.03-0022

Description The issue concerns the use of a hard-coded key for logs encryption in the affected devices. This means that data stored using this key can be decrypted by anyone who gains access to the key.

Recommendations For DASAN H660RM devices with firmware 1.03-0022, consider changing the hard-coded key to a unique, non-hardcoded key for logs encryption to prevent unauthorized access to the encrypted data. At the moment, there is no information about a newer version that contains a fix for this vulnerability.