CVE-2023-1778

Name of the Vulnerable Software and Affected Versions GajShield Data Security Firewall versions prior to v4.28 (except v4.21)

Description This issue exists due to insecure default credentials, allowing a remote attacker to login as a superuser by using the default username and password via the web-based management interface and/or exposed SSH port. This enables remote attackers to execute arbitrary commands with administrative privileges on the targeted systems.

Recommendations For versions prior to v4.28 (except v4.21), the vulnerability has been addressed by forcing the user to change their default password to a new non-default password.