CVE-2021-47744

Name of the Vulnerable Software and Affected Versions Cypress Solutions CTM-200/CTM-ONE version 1.3.6

Description The software contains a hard-coded credential issue in its Linux distribution, exposing root access. An attacker can exploit the static password 'Chameleon' to gain remote root access via Telnet or SSH on affected devices.

Recommendations Change the default 'Chameleon' password to a strong, unique password. Disable Telnet access and rely on SSH for remote administration. Restrict SSH access to authorized users and networks.