ECOA BAS controller is vulnerable to hard-coded credentials within its Linux distribution image, thus remote attackers can obtain administrator’s privilege without logging in.Referenceshttps://www.twcert.org.tw/tw/cp-132-5135-a9f5c-1.html
