Ewon Security Attention Point
Ewon reference: System - All Ewon devices have the same default administrator credentials
Concerned devices: All
Concerned firmware versions: All
All Ewon devices have the same default administrator credentials. A good security practice is to change the default administrator password at first login.
If the administrator of the device does not change it, someone malicious could take benefit of this and get access to the device with administrator privileges.
We recommend our customers to change their default administrator password as soon as possible, ideally at first login.
Raised by: Tijl Deneut - Howest (UGent) & Tony Gee - PentestPartners