3 matches found
Multiple Flaws Found in ScrutisWeb Software Exposes ATMs to Remote Hacking
Four security vulnerabilities in the ScrutisWeb ATM fleet monitoring software made by Iagona could be exploited to remotely break into ATMs, upload arbitrary files, and even reboot the terminals. The shortcomings were discovered by the Synack Red Team SRT following a client engagement. The issues...
CVE-2023-35763
creationtimestamp| type| source ---|---|--- 2023-07-18 22:31:16+00:00| seen| https://t.me/cibsecurity/66942...
CVE-2023-35763
CVE-2023-35763 affects Iagona ScrutisWeb versions 2.1.37 and earlier. The vulnerability is described as a cryptographic flaw that could allow an unauthenticated attacker to decrypt passwords in plaintext, associated with use of a hard-coded cryptographic key (CWE-321). Affected product: ScrutisWe...