PT-2025-49120 · Unknown+1 · Libicos.So+1
Published
2025-12-04
·
Updated
2025-12-16
·
CVE-2025-29268
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
ALLNET ALL-RUT22GW version 3.3.8
Description
The ALLNET ALL-RUT22GW device version 3.3.8 stores hardcoded credentials within the
libicos.so library. These credentials are present in the library and could potentially be exposed.Recommendations
Update to a newer version that does not contain hardcoded credentials in the
libicos.so library.Exploit
Fix
Using Hardcoded Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
All-Rut22Gw
Libicos.So