【Vulnerability Alert】ProVision Communications | PrismX MX100 AP Controller – Use of Hard-coded Credentials Vulnerability

publish date : 2026-01-26 update date : 2026-01-26

Source: Ministry of education information & communication security contingency platform

"" "" ""


Publication Number	TACERT-ANA-2026012204014949	Publication Time	2026/01/22 16:49
Incident Type	ANA-Vulnerability Alert	Discovery Time	2026/01/22 16:49
Impact Level	Low
[Subject] 【Vulnerability Alert】ProVision Communications \| PrismX MX100 AP Controller – Use of Hard-coded Credentials Vulnerability
[Content] Forwarded from TWCERTCC-200-202601-00000020 【ProVision Communications \| PrismX MX100 AP Controller – Use of Hard-coded Credentials】 (CVE-2026-1221, CVSS: 9.8) A Use of Hard-coded Credentials vulnerability exists in the PrismX MX100 AP controller. An unauthenticated remote attacker can use database account credentials and passwords embedded in the firmware to log in to the database. (Information Sharing Level: WHITE (Information content can be publicly disclosed)
[Affected Platform] PrismX MX100 AP controller versions earlier than v1.03.23.01 (exclusive)
[Recommended Actions] Please update the firmware to version v1.03.23.01 or later.
[Reference] https://www.twcert.org.tw/tw/cp-132-10642-3b808-1.html

(This notification is for informational purposes only and does not constitute a cybersecurity incident).
If you have questions or suggestions regarding this notification, please feel free to contact us.
Ministry of education information & communication security contingency platform
Website: https://info.cert.tanet.edu.tw/
Phone: +886-7-5250211
Internet Phone: 98400000
E-Mail: service@cert.tanet.edu.tw

Organizer: Computer Center

Click Num:

Share