Lucene search

IcscertCVELIST:CVE-2024-5434

HistoryMay 28, 2024 - 6:43 p.m.

CVE-2024-5434 Weak Encoding for Password vulnerability in Campbell Scientific CSI Web Server and RTMC

2024-05-2818:43:07

CWE-261

icscert

www.cve.org

campbell scientific

web server

rtmc

weak encoding

password vulnerability

file storage

unauthorized access

decoding.

6.9 Medium

CVSS4

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/SC:N/VI:N/SI:N/VA:N/SA:N

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

The Campbell Scientific CSI Web Server stores web authentication credentials in a file with a specific file name. Passwords within that file are stored in a weakly encoded format. There is no known way to remotely access the file unless it has been manually renamed. However, if an attacker were to gain access to the file, passwords could be decoded and reused to gain access.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "CSI Web Server and RTMC",
    "vendor": "Campbell Scientific",
    "versions": [
      {
        "status": "affected",
        "version": "CSI Web Server 1.6"
      },
      {
        "status": "affected",
        "version": "RTMC 5.0"
      }
    ]
  }
]

References

www.cisa.gov/news-events/ics-advisories/icsa-24-149-01