Description

The Motorola ACE1000 RTU through 2022-05-02 has default credentials. It exposes an SSH interface on port 22/TCP. This interface is used for remote maintenance and for SFTP file-transfer operations that are part of engineering software functionality. Access to this interface is controlled by 5 preconfigured accounts (root, abuilder, acelogin, cappl, ace), all of which come with default credentials. Although the ACE1000 documentation mentions the root, abuilder and acelogin accounts and instructs users to change the default credentials, the cappl and ace accounts remain undocumented and thus are unlikely to have their credentials changed.

Related CPE's

o

motorola

ace1000_firmware

-

Vulnerable

h

motorola

ace1000

-

References

https://www.cisa.gov/uscert/ics/advisories/icsa-22-179-06

MitigationThird Party AdvisoryUS Government Resource

https://www.forescout.com/blog/

Not Applicable

Weaknesses

[email protected]

Primary
CWE-287

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 · Critical

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2022-07-26T23:15:08.137

2 years ago

Last modified

2023-08-08T14:22:24.967

1 year ago