CVE-2017-17878

Name of the Vulnerable Software and Affected Versions Valve Steam Link build 643

Description The issue is related to the use of the DES cryptographic protocol, which truncates root passwords longer than 8 characters. This could allow a remote attacker to gain access to the device with root privileges.

Recommendations For Valve Steam Link build 643, consider changing the default password algorithm setting from DES to a more secure option to prevent password truncation. As a temporary workaround, restrict root account access and use strong passwords that are 8 characters or less until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.