{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2025-57175", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-09T14:28:36.902Z", "dateReserved": "2025-08-17T00:00:00.000Z", "datePublished": "2026-04-08T00:00:00.000Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "EtherHaul 8010", "vendor": "Siklu", "versions": [{"status": "affected", "version": "siklu-uimage-nxp-enc-10_6_2-18707-ea552dc00b", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "Siklu EtherHaul 8010 siklu-uimage-nxp-enc-10_6_2-18707-ea552dc00b devices have a static root password."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-259", "description": "CWE-259 Use of Hard-coded Password", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-08T16:31:24.061Z"}, "references": [{"url": "https://semaja2.net/2025/04/30/siklu-eh-firmware-decryption/"}], "x_generator": {"engine": "enrichogram 0.0.1"}, "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-09T14:28:28.508293Z", "id": "CVE-2025-57175", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-09T14:28:36.902Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-57175", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-09T14:28:28.508293Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-09T14:28:32.477Z"}}], "cna": {"metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}}], "affected": [{"vendor": "Siklu", "product": "EtherHaul 8010", "versions": [{"status": "affected", "version": "siklu-uimage-nxp-enc-10_6_2-18707-ea552dc00b", "versionType": "custom"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://semaja2.net/2025/04/30/siklu-eh-firmware-decryption/"}], "x_generator": {"engine": "enrichogram 0.0.1"}, "descriptions": [{"lang": "en", "value": "Siklu EtherHaul 8010 siklu-uimage-nxp-enc-10_6_2-18707-ea552dc00b devices have a static root password."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-259", "description": "CWE-259 Use of Hard-coded Password"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-08T16:31:24.061Z"}}}, "cveMetadata": {"cveId": "CVE-2025-57175", "state": "PUBLISHED", "dateUpdated": "2026-04-09T14:28:36.902Z", "dateReserved": "2025-08-17T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-04-08T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Siklu EtherHaul 8010 siklu-uimage-nxp-enc-10_6_2-18707-ea552dc00b devices have a static root password."}], "id": "CVE-2025-57175", "lastModified": "2026-04-08T21:26:13.410", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 6.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 0.5, "impactScore": 5.9, "source": "cve@mitre.org", "type": "Secondary"}]}, "published": "2026-04-08T17:20:46.730", "references": [{"source": "cve@mitre.org", "url": "https://semaja2.net/2025/04/30/siklu-eh-firmware-decryption/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-259"}], "source": "cve@mitre.org", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "siklu-uimage-nxp-enc-10_6_2-18707-ea552dc00b"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "EtherHaul 8010", "source": "cna", "vendor": "Siklu"}, "product": "etherhaul_8010", "vendor": "siklu"}], "analysis": {"en": {"generated_at": "2026-04-08T19:22:04.224437+00:00", "value": {"mitigation_remediation": ["Upgrade the device firmware to the latest Siklu release that removes the hard\u2011coded root password.", "If an upgrade is not immediately feasible, change the root password to a strong, unique value via the device\u2019s administrative interface.", "Apply network segmentation to limit access to the device from trusted networks only.", "Disable or restrict remote administrative interfaces if they are not needed.", "Monitor device logs for failed and successful login attempts using default or brute\u2011forced credentials.", "Verify that physical access to the device is restricted, and use hardware security measures such as cable locks or access controls.", "Check Siklu\u2019s official website and support portal regularly for security updates or advisories."], "summary": {"action": "Immediate Patch", "impact": "Unauthorized Root Access"}, "threat_synthesis": {"affected_systems": "All Siklu EtherHaul 8010 devices running the current firmware build are affected. Specific firmware version information was not provided, so the vulnerability likely applies to any device that has not yet been updated beyond the referenced build.", "description_and_impact": "The firmware for Siklu EtherHaul 8010 devices contains a hard\u2011coded root password, allowing anyone who discovers or guesses this credential to gain privileged control. This can lead to configuration changes, malware installation, and eventual compromise of the device\u2019s integrity and availability, affecting the confidentiality, integrity, and availability of networks that rely on the unit.", "risk_and_exploitability": "The CVSS score of 6.4 indicates moderate severity. Since no EPSS data is available and the issue is not listed in CISA\u2019s KEV catalog, it is not a known widely exploited vulnerability. Nonetheless, the presence of a static root password presents a low\u2011barrier privilege escalation path, especially if the device is reachable over a network or to an attacker with physical access. The likely attack vector, inferred from the description, is a login attempt using the embedded root credentials."}}}}, "created": "2026-04-08T19:44:37.226221+00:00", "title": "Static Root Password in Siklu EtherHaul 8010 Firmware", "updated": "2026-04-09T08:22:49.357079+00:00", "vendors": ["siklu", "siklu$PRODUCT$etherhaul_8010"]}