Back to Explorer

CVE-2021-47744

PUBLISHED
12/31/2025 83251b91-4cc7-4094-a5c7-464a1b83ea10

Technical Description

Cypress Solutions CTM-200/CTM-ONE 1.3.6 contains hard-coded credentials vulnerability in Linux distribution that exposes root access. Attackers can exploit the static 'Chameleon' password to gain remote root access via Telnet or SSH on affected devices.

Affected Products

Cypress
ONE
-

References

https://www.exploit-db.com/exploits/50407
ExploitDB-50407
https://www.cypress.bc.ca
Cypress Solutions Official Homepage
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5686.php
Zero Science Lab Disclosure (ZSL-2021-5686)
https://www.vulncheck.com/advisories/cypress-solutions-ctm-ctm-one-hard-coded-credentials-remote-root
VulnCheck Advisory: Cypress Solutions CTM-200/CTM-ONE 1.3.6 Hard-coded Credentials Remote Root

Impact Analysis

Attack Vector Network
Attack Complexity Low
Privileges Required None