GE D20 Default Credentials

High Nessus Plugin ID 57598


The remote device can be accessed with default credentials.


The remote device appears to be a General Electric D20 Remote Terminal that can be accessed using default credentials. An attacker could leverage this issue to gain administrative access to the affected device.


Change the default password or block access to the port.

Plugin Details

Severity: High

ID: 57598

File Name: scada_d20_default_telnet.nbin

Version: $Revision: 1.27 $

Type: remote

Family: SCADA

Published: 2012/01/19

Modified: 2018/01/29

Dependencies: 10280

Risk Information

Risk Factor: High


Base Score: 7.5

Temporal Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:H/RL:ND/RC:ND

Vulnerability Information

Excluded KB Items: global_settings/supplied_logins_only

Exploit Available: true

Exploit Ease: No exploit is required

Reference Information

OSVDB: 78327