CVE-2023-23450 in FTMg Air Flow Sensorinfo

Zusammenfassung

von MITRE • 15.05.2023

Use of Password Hash Instead of Password for Authentication in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214, 1100215, 1100216, 1120114, 1120116, 1122524, 1122526 allows an unprivileged remote attacker to use a password hash instead of an actual password to login to a valid user account via the REST interface.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

SICK AG

Reservieren

12.01.2023

Veröffentlichung

15.05.2023

Moderieren

akzeptiert

Eintrag

VDB-229010

CPE

bereit

CWE

CWE-836 (bestätigt)

CVSS

9.8 (NVD)

EPSS

0.00532

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2023-23450
NVD	https://nvd.nist.gov/vuln/detail/CVE-2023-23450
CVE Details	https://www.cvedetails.com/cve/CVE-2023-23450/

◂ Zurück Übersicht Weiter ▸

Do you need the next level of professionalism?

Upgrade your account now!