Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2021-23857

🗓️ 04 Oct 2021 17:32:36Reported by boschType 
cve
 cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 38 Views

Login with hash: The login routine allows the client to log in to the system not by using the password, but by using the hash of the password. Combined with CVE-2021-23858, this allows an attacker to subsequently login to the system

Related
Detection
Affected
Refs
Social
ReporterTitlePublishedViews
Family
Circl		CVE-2021-23857
4 Oct 202122:25
circl
CNNVD		Bosch Rexroth IndraMotion Mlc 授权问题漏洞
4 Oct 202100:00
cnnvd
CNVD		Bosch Rexroth IndraMotion Mlc Licensing Issue Vulnerability
9 Oct 202100:00
cnvd
Cvelist		CVE-2021-23857 Login with hash
4 Oct 202117:32
cvelist
EUVD		EUVD-2021-10783
7 Oct 202500:30
euvd
NVD		CVE-2021-23857
4 Oct 202118:15
nvd
OSV		CVE-2021-23857
4 Oct 202118:15
osv
Prion		Default credentials
4 Oct 202118:15
prion
Positive Technologies		PT-2021-15570 · Rexroth +1 · Indramotion Mlc L20 +13
4 Oct 202100:00
ptsecurity
RedhatCVE		CVE-2021-23857
22 May 202521:19
redhatcve
Rows per page
NVD
Node
boschrexroth_indramotion_mlc_l20_firmwareRange12
AND
boschrexroth_indramotion_mlc_l20Match-
Node
boschrexroth_indramotion_mlc_l40_firmwareRange12
AND
boschrexroth_indramotion_mlc_l40Match-
Node
boschrexroth_indramotion_mlc_l25_firmwareRange12
AND
boschrexroth_indramotion_mlc_l25Match-
Node
boschrexroth_indramotion_mlc_l45_firmwareRange12
AND
boschrexroth_indramotion_mlc_l45Match-
Node
boschrexroth_indramotion_mlc_l65_firmwareRange12
AND
boschrexroth_indramotion_mlc_l65Match-
Node
boschrexroth_indramotion_mlc_l75_firmwareRange12
AND
boschrexroth_indramotion_mlc_l75Match-
Node
boschrexroth_indramotion_mlc_l85_firmwareRange12
AND
boschrexroth_indramotion_mlc_l85Match-
Node
boschrexroth_indramotion_mlc_xm22_firmwareRange12
AND
boschrexroth_indramotion_mlc_xm22Match-
Node
boschrexroth_indramotion_mlc_xm21_firmwareRange12
AND
boschrexroth_indramotion_mlc_xm21Match-
Node
boschrexroth_indramotion_mlc_xm41_firmwareRange12
AND
boschrexroth_indramotion_mlc_xm41Match-
Node
boschrexroth_indramotion_mlc_xm42_firmwareRange12
AND
boschrexroth_indramotion_mlc_xm42Match-
Node
boschrexroth_indramotion_xlc_firmwareRange12
AND
boschrexroth_indramotion_xlcMatch-
[
  {
    "product": "IndraMotion MLC L25, L45, L65, L75, L85, XM21, XM22, XM41 and XM42 IndraMotion XLC",
    "vendor": "Rexroth",
    "versions": [
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "12 VRS",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "IndraMotion MLC L20, L40",
    "vendor": "Rexroth",
    "versions": [
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "12 VRS",
        "versionType": "custom"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
21 Nov 2024 05:51Current
8.3High risk
Vulners AI Score8.3
CVSS 3.19.8 - 10
CVSS 210
EPSS0.00358
CWE-836CWE-287
cve-2021-23857login routinehash loginsystem securitynvdpassword hash
38