CVE-2021-47744

HIGH

Cypress Solutions CTM-200/CTM-ONE <1.3.6 - Code Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-47744. PoCs published by LiquidWorm.

AI-analyzed exploit summary This exploit leverages hard-coded credentials (root:Chameleon) to establish an SSH connection to Cypress Solutions CTM-200/CTM-ONE devices, providing remote root access. It uses Paramiko to execute arbitrary commands on the target system.

Description

Cypress Solutions CTM-200/CTM-ONE 1.3.6 contains hard-coded credentials vulnerability in Linux distribution that exposes root access. Attackers can exploit the static 'Chameleon' password to gain remote root access via Telnet or SSH on affected devices.

Exploits (1)

exploitdb WORKING POC
by LiquidWorm · pythonremotehardware
https://www.exploit-db.com/exploits/50407

This exploit leverages hard-coded credentials (root:Chameleon) to establish an SSH connection to Cypress Solutions CTM-200/CTM-ONE devices, providing remote root access. It uses Paramiko to execute arbitrary commands on the target system.

Classification
Working Poc 100%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Cypress Solutions CTM-200/CTM-ONE (versions 1.3.6, 1.3.1, 1.1.9, 2.7.1.5659, 2.0.5.3356-184)
No auth needed
Prerequisites: Network access to the target device · SSH service enabled on the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/50407
Various Sources product
https://www.cypress.bc.ca
Third Party Advisory third-party-advisory
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5686.php

Scores

CVSS v3 7.5
EPSS 0.0028
EPSS Percentile 19.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

CWE
CWE-798
Status published
Products (1)
Cypress/ONE -
Published Dec 31, 2025
Tracked Since Feb 18, 2026