High severity7.5NVD Advisory· Published Apr 21, 2017· Updated May 13, 2026
CVE-2016-1561
CVE-2016-1561
Description
ExaGrid appliances with firmware before 4.8 P26 have a default SSH public key in the authorized_keys file for root, which allows remote attackers to obtain SSH access by leveraging knowledge of a private key from another installation or a firmware image.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- packetstormsecurity.com/files/136634/ExaGrid-Known-SSH-Key-Default-Password.htmlnvdExploitThird Party AdvisoryVDB Entry
- community.rapid7.com/community/infosec/blog/2016/04/07/r7-2016-04-exagrid-backdoor-ssh-keys-and-hardcoded-credentialsnvdExploitMitigationThird Party Advisory
- www.rapid7.com/db/modules/exploit/linux/ssh/exagrid_known_privkeynvdThird Party Advisory
News mentions
0No linked articles in our index yet.