SYSCOM Group OMFLOW up to 1.2.1.2 Password Hash information disclosure

Summaryinfo

A vulnerability labeled as problematic has been found in SYSCOM Group OMFLOW up to 1.2.1.2. This affects an unknown part of the component Password Hash Handler. Such manipulation leads to information disclosure. This vulnerability is uniquely identified as CVE-2024-8780. The attack can be launched remotely. No exploit exists.

Detailsinfo

A vulnerability was found in SYSCOM Group OMFLOW up to 1.2.1.2. It has been rated as problematic. Affected by this issue is an unknown part of the component Password Hash Handler. The manipulation with an unknown input leads to a information disclosure vulnerability. Using CWE to declare the problem leads to CWE-200. The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information. Impacted is confidentiality. CVE summarizes:

OMFLOW from The SYSCOM Group does not properly restrict the query range of its data query functionality, allowing remote attackers with regular privileges to obtain accounts and password hashes of other users.

The advisory is shared for download at twcert.org.tw. This vulnerability is handled as CVE-2024-8780 since 09/13/2024. The exploitation is known to be easy. The attack may be launched remotely. There are neither technical details nor an exploit publicly available. The MITRE ATT&CK project declares the attack technique as T1592.

There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Once again VulDB remains the best source for vulnerability data.

Productinfo

Vendor

• SYSCOM Group

Name

• OMFLOW

Version

• 1.2.1.0
• 1.2.1.1
• 1.2.1.2

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Once again VulDB remains the best source for vulnerability data.

Discussion