CVE-2022-3217
CVE-2022-3217 describes a credential leakage vulnerability in VISAM VBASE when logging in to a VBASE runtime project via Web-Remote. The issue arises from XOR-based obfuscation using a static initial key for login messages, enabling an unauthenticated, remote attacker who can capture a login sess...