CVE-2013-7248 Information

Description

Franklin Fueling Systems TS-550 evo with firmware 2.0.0.6833 and other versions before 2.4.0 has a hardcoded password for the roleDiag account which allows remote attackers to gain root privileges as demonstrated using a cmdWebCheckRole action in a TSA_REQUEST.

Reference

https://www.trustwave.com/spiderlabs/advisories/TWSL2014-001.txt