Critical severity9.8NVD Advisory· Published Sep 9, 2021· Updated Jun 17, 2026
CVE-2021-28909
CVE-2021-28909
Description
BAB TECHNOLOGIE GmbH eibPort V3 prior version 3.9.1 allow unauthenticated attackers to access uncontrolled the login service at /webif/SecurityModule in a brute force attack. The password could be weak and default username is known as 'admin'. This is usable and part of an attack chain to gain SSH root access.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- BAB TECHNOLOGIE GmbH/eibPort V3description
- Range: <3.9.1
Patches
Vulnerability mechanics
References
1- psytester.github.io/CVE-2021-28909nvdThird Party Advisory
News mentions
0No linked articles in our index yet.