CVE-2024-5434 in CSI Web Serverالمعلومات

الملخص

بحسب MITRE • 28/05/2024

The Campbell Scientific CSI Web Server stores web authentication credentials in a file with a specific file name. Passwords within that file are stored in a weakly encoded format. There is no known way to remotely access the file unless it has been manually renamed. However, if an attacker were to gain access to the file, passwords could be decoded and reused to gain access.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

إفشاء

28/05/2024

الاعتدال

تمت الموافقة

إدخال

VDB-266424

EPSS

0.00216

KEV

لا

النشاطات

منخفض جدًا

المصادر

Might our Artificial Intelligence support you?

Check our Alexa App!