CVE-2026-23647

Name of the Vulnerable Software and Affected Versions Glory RBG-100 recycler systems using the ISPK-08 software component (affected versions not specified)

Description The Glory RBG-100 recycler systems, utilizing the ISPK-08 software component, are susceptible to unauthorized access due to hard-coded operating system credentials. These credentials enable remote authentication to the underlying Linux system. Multiple local user accounts, including those with administrative privileges, have fixed, embedded passwords. An attacker with network access to exposed services, such as SSH, can authenticate using these credentials and gain unauthorized access to the system. Successful exploitation allows remote access with elevated privileges, potentially leading to full system compromise.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.