Critical severity10.0NVD Advisory· Published Apr 27, 2023· Updated Jun 17, 2026
CVE-2023-1778
CVE-2023-1778
Description
This vulnerability exists in GajShield Data Security Firewall firmware versions prior to v4.28 (except v4.21) due to insecure default credentials which allows remote attacker to login as superuser by using default username/password via web-based management interface and/or exposed SSH port thereby enabling remote attackers to execute arbitrary commands with administrative/superuser privileges on the targeted systems.
The vulnerability has been addressed by forcing the user to change their default password to a new non-default password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<4.28, except 4.21+ 1 more
- (no CPE)range: <4.28, except 4.21
- (no CPE)range: 4.5
Patches
Vulnerability mechanics
References
1- www.cert-in.org.in/s2cMainServletnvdThird Party Advisory
News mentions
0No linked articles in our index yet.