Unrated severityNVD Advisory· Published Jan 21, 2020· Updated Aug 5, 2024

CVE-2019-17584

Description

The Meinberg SyncBox/PTP/PTPv2 devices have default SSH keys which allow attackers to get root access to the devices. All firmware versions up to v5.34o, v5.34s, v5.32* or 5.34g are affected. The private key is also used in an internal interface of another Meinberg Device and can be extracted from a firmware update of this device. An update to fix the vulnerability was published by the vendor.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Meinberg/SyncBox/PTP/PTPv2 devicesdescription
Meinberg/SyncBox/PTP/PTPv2llm-create
Range: <= v5.34o, v5.34s, v5.32*, v5.34g

Patches

Vulnerability mechanics

References

w1n73r.de/CVE/2019/17584/mitrex_refsource_MISC
www.meinbergglobal.com/english/news/meinberg-security-advisory-mbgsa-1904-syncbox-ptp-ptpv2.htmmitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000