Back to all security reports

Ewon Security Attention Point

Ewon reference: System - All Ewon devices have the same default administrator credentials

 

Concerned devices: All

Concerned firmware versions: All

 

Description:

All Ewon devices have the same default administrator credentials. A good security practice is to change the default administrator password at first login.

If the administrator of the device does not change it, someone malicious could take benefit of this and get access to the device with administrator privileges.

 

Recommendation:

We recommend our customers to change their default administrator password as soon as possible, ideally at first login.

 

Raised by: Tijl Deneut - Howest (UGent) & Tony Gee - PentestPartners