EUVD-2018-9663

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Circontrol CirCarLife versions before 4.3.1 store PAP credentials in clear text in log files.

Reporter	Title	Published	Views	Family All 5
CVE	CVE-2018-17922	2 Nov 201815:00	–	cve
Cvelist	CVE-2018-17922	2 Nov 201815:00	–	cvelist
ICS	Circontrol CirCarLife	1 Nov 201800:00	–	ics
NVD	CVE-2018-17922	2 Nov 201815:29	–	nvd
Prion	Authentication flaw	2 Nov 201815:29	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "0506dcf8-4348-3b57-9b9b-2bf38c87edc7",
        "vendor": {
          "name": "Unknown"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "ae3a6e63-2839-3e82-9198-88f5b1883ca2",
        "product": {
          "name": "Circontrol CirCarLife all versions prior to 4.3.1"
        },
        "product_version": "Circontrol CirCarLife all versions prior to 4.3.1"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/105816
ics-cert	www.ics-cert.us-cert.gov/advisories/ICSA-18-305-03
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

9.5High risk

Vulners AI Score9.5

CVSS 39.8

CVSS 25

EPSS0.0233

credentials security log file authentication