Lucene search
K

107 matches found

ICS
ICS
added 2024/06/27 6:0 a.m.26 views

Johnson Controls Illustra Essentials Gen 4 (Update A)

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 6.8 ATTENTION : Exploitable remotely/low attack complexity Vendor : Johnson Controls, Inc. Equipment : Illustra Essentials Gen 4 Vulnerability : Storing Passwords in a Recoverable Format 2. RISK EVALUATION Successful exploitation of this vulnerability may...

6.8CVSS6.8AI score0.00384EPSS
Exploits0References10
ICS
ICS
added 2024/06/27 6:0 a.m.23 views

Johnson Controls Illustra Essentials Gen 4 (Update A)

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 6.8 ATTENTION : Exploitable remotely Vendor : Johnson Controls, Inc. Equipment : Illustra Essentials Gen 4 Vulnerability : Storing Passwords in a Recoverable Format 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an authenticated...

6.8CVSS6.5AI score0.00353EPSS
Exploits0References10
Cvelist
Cvelist
added 2024/05/15 7:39 p.m.23 views

CVE-2024-32042 CyberPower PowerPanel business Storing Passwords in a Recoverable Format

The key used to encrypt passwords stored in the database can be found in the CyberPower PowerPanel application code, allowing the passwords to be recovered...

4.9CVSS5.3AI score0.00383EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/05/06 12:0 a.m.7 views

The vulnerability of the PowerPanel Business’s monitoring and management system for uninterruptible power sources lies in the storage of passwords in a recoverable format, which allows an intruder to gain unauthorized access to protected information.

The vulnerability of the PowerPanel Business monitoring and power source management system lies in the storage of passwords in a recoverable format. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

6.1CVSS5.4AI score0.00383EPSS
Exploits0References3Affected Software1
ICS
ICS
added 2024/04/18 6:0 a.m.46 views

Unitronics Vision Legacy series (Update A)

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION : Exploitable remotely/low attack complexity Vendor : Unitronics Equipment : Vision Legacy series Vulnerability : Storing Passwords in a Recoverable Format 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker...

7.5CVSS8.1AI score0.00503EPSS
Exploits0References10
OSV
OSV
added 2023/12/13 6:31 p.m.28 views

GHSA-6R5W-JJR5-QVGR Password stored in a recoverable format by Jenkins OpenId Connect Authentication Plugin

Jenkins OpenId Connect Authentication Plugin stores a password of a local user account used as an anti-lockout feature in a recoverable format, allowing attackers with access to the Jenkins controller file system to recover the plain text password of that account, likely gaining administrator...

6.7CVSS6.7AI score0.00286EPSS
Exploits0References7
OSV
OSV
added 2023/12/13 6:15 p.m.3 views

CVE-2023-50770

Jenkins OpenId Connect Authentication Plugin 2.6 and earlier stores a password of a local user account used as an anti-lockout feature in a recoverable format, allowing attackers with access to the Jenkins controller file system to recover the plain text password of that account, likely gaining...

6.7CVSS5.8AI score
Exploits0References2
NVD
NVD
added 2023/12/13 6:15 p.m.28 views

CVE-2023-50770

Jenkins OpenId Connect Authentication Plugin 2.6 and earlier stores a password of a local user account used as an anti-lockout feature in a recoverable format, allowing attackers with access to the Jenkins controller file system to recover the plain text password of that account, likely gaining...

6.7CVSS0.00286EPSS
Exploits0References2
Prion
Prion
added 2023/12/13 6:15 p.m.25 views

Format string

Jenkins OpenId Connect Authentication Plugin 2.6 and earlier stores a password of a local user account used as an anti-lockout feature in a recoverable format, allowing attackers with access to the Jenkins controller file system to recover the plain text password of that account, likely gaining...

4CVSS7AI score0.00286EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/25 12:0 a.m.8 views

CVE-2023-2881 Storing Passwords in a Recoverable Format in pimcore/customer-data-framework

Storing Passwords in a Recoverable Format in GitHub repository pimcore/customer-data-framework prior to 3.3.10...

6.7CVSS5.1AI score0.00547EPSS
Exploits0References2
NVD
NVD
added 2023/05/10 8:15 p.m.16 views

CVE-2023-31150

A Storing Passwords in a Recoverable Format vulnerability in the Schweitzer Engineering Laboratories Real-Time Automation Controller SEL RTAC database system could allow an authenticated attacker to retrieve passwords. See SEL Service Bulletin dated 2022-11-15 for more details...

8CVSS7.7AI score0.00473EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/05/10 7:21 p.m.24 views

CVE-2023-31150 Storing Passwords in a Recoverable Format

A Storing Passwords in a Recoverable Format vulnerability in the Schweitzer Engineering Laboratories Real-Time Automation Controller SEL RTAC database system could allow an authenticated attacker to retrieve passwords. See SEL Service Bulletin dated 2022-11-15 for more details...

8CVSS6.9AI score0.00473EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/04/11 12:0 a.m.21 views

Siemens SCALANCE X Storing Passwords in a Recoverable Format (CVE-2019-6567)

A vulnerability has been identified in SCALANCE X-200 switch family incl. SIPLUS NET variants All Versions V5.2.4, SCALANCE X-200IRT switch family incl. SIPLUS NET variants All versions V5.5.0, SCALANCE X-300 switch family incl. X408 and SIPLUS NET variants All versions V4.1.3, SCALANCE X-414-3E...

5.5CVSS5.6AI score0.00301EPSS
Exploits0References3
ICS
ICS
added 2023/02/16 12:0 a.m.34 views

BD Alaris Infusion Central

1. EXECUTIVE SUMMARY CVSS v3 7.3 ATTENTION: Low attack complexity Vendor: Becton, Dickinson and Company BD Equipment: Alaris Infusion Central --------- Begin Update A part 1 of 2 --------- Vulnerability: Storing Passwords in a Recoverable Format --------- End Update A part 1 of 2 --------- 2...

7.3CVSS7.1AI score0.00162EPSS
Exploits0References6
OSV
OSV
added 2023/02/13 2:21 a.m.2 views

CVE-2022-43460

Driver Distributor v2.2.3.1 and earlier contains a vulnerability where passwords are stored in a recoverable format. If an attacker obtains a configuration file of Driver Distributor, the encrypted administrator's credentials may be decrypted...

7.5CVSS5.7AI score
Exploits0References2
Prion
Prion
added 2023/01/30 11:15 p.m.16 views

Format string

A CWE-257: Storing Passwords in a Recoverable Format vulnerability exists that could result in unwanted access to a DCE instance when performed over a network by a malicious third-party. Affected Products: Data Center Expert Versions prior to V7.9.0...

7.5CVSS9.2AI score0.00472EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/10/18 3:15 a.m.21 views

Design/Logic Flaw

On cSRX Series devices software permission issues in the container filesystem and stored files combined with storing passwords in a recoverable format in Juniper Networks Junos OS allows a local, low-privileged attacker to elevate their permissions to take control of any instance of a cSRX softwa...

4.3CVSS7.6AI score0.00157EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/10/12 12:0 a.m.40 views

Juniper Junos OS Vulnerability (JSA69908)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA69908 advisory. - On cSRX Series devices software permission issues in the container filesystem and stored files combined with storing passwords in a recoverable format in Juniper Networks...

7.8CVSS7.5AI score0.00157EPSS
Exploits0References2
NVD
NVD
added 2022/08/24 4:15 p.m.23 views

CVE-2022-34837

Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 8.20 allows an attacker who successfully exploit the vulnerability may add more network clients that may monitor various activities of the Zenon...

6.2CVSS0.0014EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/08/24 3:15 p.m.23 views

CVE-2022-34838 ABB Ability TM Operations Data Management Zenon Zenon Log Server file access control

Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 8.20 allows an attacker who successfully exploit the vulnerability may add or alter data points and corresponding attributes. Once such engineering data is used the data visualization will be altered for the end user...

8.1CVSS8.5AI score0.00146EPSS
Exploits0References1
Rows per page
Query Builder