A vulnerability classified as critical has been found in Peplink Balance Two up to 8.3.x. Affected is an unknown function of the component Console Port Authentication. The manipulation leads to hard-coded credentials.
This vulnerability is traded as CVE-2023-49228. It is possible to launch the attack on the physical device. There is no exploit available.
It is recommended to upgrade the affected component.