VYPR
Unrated severityNVD Advisory· Published Mar 17, 2025· Updated Feb 26, 2026

CVE-2021-22126

CVE-2021-22126

Description

A use of hard-coded password vulnerability in FortiWLC version 8.5.2 and below, version 8.4.8 and below, version 8.3.3 to 8.3.2, version 8.2.7 to 8.2.6 may allow a local, authenticated attacker to connect to the managed Access Point (Meru AP and FortiAP-U) as root using the default hard-coded username and password.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Fortinet/Fortiwlccpe-rescue2 versions
    cpe:2.3:a:fortinet:fortiwlc:8.5.2:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:fortinet:fortiwlc:8.5.2:*:*:*:*:*:*:*range: 8.5.0
    • (no CPE)range: <=8.5.2, <=8.4.8, 8.3.2-8.3.3, 8.2.6-8.2.7

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.