CVE-2021-30064

Name of the Vulnerable Software and Affected Versions Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 versions prior to 03.23 Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F20/21 Belden Tofino Xenon Security Appliance (affected versions not specified) EAGLE 20 Tofino (affected versions not specified) Tofino Argon Security Appliance (affected versions not specified)

Description The issue is related to the use of hardcoded credentials in the SSH protocol implementation of the affected devices. This can allow a remote attacker to succeed with an SSH login using the default credentials if the device is in an uncommissioned state, potentially leading to the execution of arbitrary code.

Recommendations For Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 versions prior to 03.23, update to version 03.23 or later. For Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F20/21, consider disabling SSH login until a patch is available. For Belden Tofino Xenon Security Appliance, EAGLE 20 Tofino, and Tofino Argon Security Appliance, at the moment, there is no information about a newer version that contains a fix for this vulnerability.