3 matches found
CVE-2023-3395
All versions of the TWinSoft Configuration Tool store encrypted passwords as plaintext in memory. An attacker with access to system files could open a file to load the document into memory, including sensitive information associated with document, such as password. The attacker could then obtain...
CVE-2023-3395
The CVE-2023-3395 issue affects the TWinSoft Configuration Tool, where all versions store encrypted passwords as plaintext in memory, enabling an attacker with file access to load documents into memory and extract plaintext passwords via memory viewing. The vulnerability is tied to plaintext stor...
Ovarro TBox RTUs
1. EXECUTIVE SUMMARY CVSS v3 7.2 ATTENTION: Exploitable remotely/low attack complexity Vendor: Ovarro Equipment: TBox RTUs Vulnerabilities: Missing Authorization, Use of Broken or Risky Cryptographic Algorithm, Inclusion of Functionality from Untrusted Control Sphere, Insufficient Entropy,...