An unauthenticated remote attacker can recover a default, hard coded password from a firmware image and thus gain full access to all affected devices.