Design/Logic Flaw

2017-04-0305:59:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

67.8%

JSON

Jensen of Scandinavia AS Air:Link 3G (AL3G) version 2.23m (Rev. 3), Air:Link 5000AC (AL5000AC) version 1.13, and Air:Link 59300 (AL59300) version 1.04 (Rev. 4) devices allow remote attackers to read passwords via a direct request to the x.asp page.

CPENameOperatorVersion
al3g_firmwareeq2.23.109
al5000ac_firmwareeq1.13
al59300_firmwareeq1.04

Name	Operator	Version
al3g_firmware	eq	2.23.109
al5000ac_firmware	eq	1.13
al59300_firmware	eq	1.04

References

www.riskbasedsecurity.com/research/RBS-2016-004.pdf