The ANTlabs InnGate firmware on IG 3100, IG 3101, InnGate 3.00 E, InnGate 3.01 E, InnGate 3.02 E, InnGate 3.10 E, InnGate 3.01 G, and InnGate 3.10 G devices does not require authentication for rsync. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.
Privilege Escalation
Inngate Ig 3 00 E
Inngate Ig 3 01 E
Inngate Ig 3 02 E
Inngate Ig 3 10 E
+3
NVD
CVSS 2.0
10.0
EPSS
2.1%