CNNVD-202512-5533 Information

CNNVD ID

CNNVD-202512-5533

Related CVE

CVE-2021-47744

• CNNVD Published: 2025-12-31

Description (Chinese)

Cypress CTM-ONE是加拿大Cypress公司的一款无线LTE网关。 Cypress CTM-ONE 1.3.6版本存在信任管理问题漏洞，该漏洞源于Linux发行版中存在硬编码凭证，可能导致攻击者获得远程root访问权限。

Description (English)

Cypress CTM-ONE is a wireless LTE gateway for Cypress Canada. Version 1.3.6 of Cypress CTM-ONE contains a trust management gap, which stems from the existence of hard-coding vouchers in the Linux release, which may lead to remote root access for attackers.

Hazard Level

Medium

Vulnerability Type

信任管理问题

Affected Vendor

Cypress

Published

2025-12-31

Last Modified

2026-02-24

References

https://www.cypress.bc.ca https://www.exploit-db.com/exploits/50407 https://www.vulncheck.com/advisories/cypress-solutions-ctm-ctm-one-hard-coded-credentials-remote-root https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5686.php