Detections
Analytics

SSH Multiple Device Default Credentials (PCI)

critical Nessus Plugin ID 108798

Language:

Synopsis

The remote system can be accessed with a known set of credentials.

Description

The remote device is a device that uses a set of publicly known, default credentials. Knowing these, an attacker able to connect to the service can gain control of the device.

WARNING: This plugin may run up to 4 hours depending on network conditions.

Solution

Log into the remote host and change the default login credentials.

See Also

https://www.urtech.ca/2011/12/default-passwords/

Plugin Details

Severity: Critical

ID: 108798

File Name: ssh_bruteforce_pci.nasl

Version: 1.16

Type: remote

Family: Misc.

Published: 4/3/2018

Updated: 3/7/2023

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

CVSS Score Rationale: Default credentials

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: manual

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

Required KB Items: Settings/PCI_DSS

Excluded KB Items: global_settings/supplied_logins_only, Settings/PCI_DSS_local_checks