CRITICAL
MOBATIME
CVE published 2024-12-10
CVE-2024-12286
The MOBATIME Network Master Clock DTS 4801 contains a critical vulnerability (CVSS 9.8) that allows remote attackers to gain initial access via SSH using default credentials. This represents a classic insecure default configuration issue in industrial control systems. The vulnerability was disclosed by CISA on December 10, 2024, and affects firmware version FW__00020419.01.02020154. Attackers with network [truncated]