Home

Description

N.V.K.INTER CO., LTD. (NVK) iBSG v3.5 was discovered to contain a hardcoded root password that allows attackers to login with root privileges via the SSH service. The cleartext password corresponding to the $1$4Tmm01jl$7HRvcW.bz7uGmX9hiQWvR hash was not determined by the vulnerability discoverer.

PUBLISHED Reserved 2023-08-07 | Published 2023-08-21 | Updated 2026-07-05 | Assigner mitre

References

ibsg.com

nvkinter.com

github.com/maride

sec.maride.cc/posts/ibsg/

cve.org (CVE-2023-39808)

nvd.nist.gov (CVE-2023-39808)

Download JSON