#cwe-1393 主题 - Cyber Security Daily Radar

vantage6

### Impact Vantage6 currently provides an initial user with username `root` and password `root`. This is not ideal for the following reasons: - Attackers know that almost all vantage6 servers have a user with username `root` that probably has admin rights - The initial password is very weak and it is possible that administrators forget to reset it. ### Patches No ### Workarounds It is possible t

💡 风险点: 原文内容（由于配额限制，未进行深度 LLM 分析）

🎯 建议动作: 建议根据原文自行评估

排序因子: 有可用补丁/修复方案 (+3) | Secondary 数据源 (+2) | LLM 评分加成 (+0.4)

CVE-2026-35075

An unauthenticated remote attacker can recover a default, hard coded password from a firmware image and thus gain full access to all affected devices.

💡 影响/原因: 原文内容（由于配额限制，未进行深度 LLM 分析）

🎯 建议动作: 建议根据原文自行评估

排序因子: CVSS 严重风险 (9.8) (+4) | Primary 数据源 (+3) | LLM 评分加成 (+0.4)

#cwe-1393

Vantage6: Set admin user and password from environment or configuration

An unauthenticated remote attacker can recover a default, hard coded password from a firmware image and thus gain full access to all affected devices.