Lucene search

Easergy Builder Security Vulnerabilities

cve

CVE-2020-7514

A CWE-327: Use of a Broken or Risky Cryptographic Algorithm vulnerability exists in Easergy Builder (Version 1.4.7.2 and older) which could allow an attacker access to the authorization credentials for a device and gain full access.

7.8CVSS

7.7AI Score

0.0005EPSS

2020-07-23 09:15 PM

cve

CVE-2020-7515

A CWE-321: Use of hard-coded cryptographic key stored in cleartext vulnerability exists in Easergy Builder V1.4.7.2 and prior which could allow an attacker to decrypt a password.

7.8CVSS

7.5AI Score

0.0005EPSS

2020-07-23 09:15 PM

cve

CVE-2020-7516

A CWE-316: Cleartext Storage of Sensitive Information in Memory vulnerability exists in Easergy Builder V1.4.7.2 and prior which could allow an attacker access to login credentials.

7.8CVSS

7.4AI Score

0.0005EPSS

2020-07-23 09:15 PM

cve

CVE-2020-7517

A CWE-312: Cleartext Storage of Sensitive Information vulnerability exists in Easergy Builder (Version 1.4.7.2 and older) which could allow an attacker to read user credentials.

5.5CVSS

5.3AI Score

0.0005EPSS

2020-07-23 09:15 PM

cve

CVE-2020-7518

A CWE-20: Improper input validation vulnerability exists in Easergy Builder (Version 1.4.7.2 and older) which could allow an attacker to modify project configuration files.

7.5CVSS

7.4AI Score

0.001EPSS

2020-07-23 09:15 PM

cve

CVE-2020-7519

A CWE-521: Weak Password Requirements vulnerability exists in Easergy Builder (Version 1.4.7.2 and older) which could allow an attacker to compromise a user account.

7.5CVSS

7.3AI Score

0.002EPSS

2020-07-23 09:15 PM