eNet SMART HOME server 2.2.1 and 2.3.1 ships with default...
Critical severity
Unreviewed
Published
Feb 15, 2026
to the GitHub Advisory Database
•
Updated Feb 15, 2026
Description
Published by the National Vulnerability Database
Feb 15, 2026
Published to the GitHub Advisory Database
Feb 15, 2026
Last updated
Feb 15, 2026
eNet SMART HOME server 2.2.1 and 2.3.1 ships with default credentials (user:user, admin:admin) that remain active after installation and commissioning without enforcing a mandatory password change. Unauthenticated attackers can use these default credentials to gain administrative access to sensitive smart home configuration and control functions.
References