Improper access control

2024-02-1410:15:00

PRIOn knowledge base

www.prio-n.com

access control

vulnerability

energy management controller

unauthenticated attacker

hashed password

7.3 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.8%

JSON

Improper access control vulnerability exists in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier, which may allow a network-adjacent unauthenticated attacker to obtain a username and its hashed password displayed on the management page of the affected product.