CVE-2017-17107

Name of the Vulnerable Software and Affected Versions Zivif PR115-204-P-RS versions prior to a version with a fixed password for the root user

Description The issue is related to the use of hardcoded credentials, specifically a password cat1029 for the root user, which cannot be changed due to the SONIX operating system's setup. This allows a remote attacker to gain access to the device with root privileges using a Telnet connection.

Recommendations For Zivif PR115-204-P-RS, consider disabling Telnet access until a patch or a version with a changeable root password is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.