Econolite EOS versions prior to 3.2.23 use a weak hash
algorithm for encrypting privileged user credentials. A configuration file that
is accessible without authentication uses MD5 hashes for encrypting
credentials, including those of administrators and technicians.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.cisa.gov/uscert/ics/advisories/icsa-23-026-02 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2023-01-26T20:39:37.729Z
Updated: 2024-08-02T05:10:56.126Z
Reserved: 2023-01-23T18:19:28.691Z
Link: CVE-2023-0452
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-01-26T21:18:08.860
Modified: 2024-11-21T07:37:12.257
Link: CVE-2023-0452
Redhat
No data.