Multiple Lenze products of the cabinet series skip the password verification upon second login. After a user has been logged on to the device once, a remote attacker can get full access without knowledge of the password.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://cert.vde.com/en/advisories/VDE-2022-030/ |
History
No history.
MITRE
Status: PUBLISHED
Assigner: CERTVDE
Published: 2022-07-11T10:40:33.696766Z
Updated: 2024-09-16T22:57:01.217Z
Reserved: 2022-07-04T00:00:00
Link: CVE-2022-2302
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-07-11T11:15:08.117
Modified: 2024-11-21T07:00:43.573
Link: CVE-2022-2302
Redhat
No data.