High severity8.1NVD Advisory· Published Mar 6, 2017· Updated May 13, 2026

CVE-2017-6351

Description

The WePresent WiPG-1500 device with firmware 1.0.3.7 has a manufacturer account that has a hardcoded username / password. Once the device is set to DEBUG mode, an attacker can connect to the device using the telnet protocol and log into the device with the 'abarco' hardcoded manufacturer account. This account is not documented, nor is the DEBUG feature or the use of telnetd on port tcp/5885.

Affected products

Wepresent/Wipg 1500 Firmware
cpe:2.3:o:wepresent:wipg-1500_firmware:1.0.3.7:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/96588nvdThird Party AdvisoryVDB Entry
www.wepresentwifi.comnvdVendor Advisory
www.exploit-db.com/exploits/41480/nvd

News mentions

No linked articles in our index yet.

cvss	0.526
epss	0.007
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000