2 matches found
Siemens RUGGEDCOM Exposure of Sensitive Information to an Unauthorized Actor (CVE-2023-52238)
The web server of the affected systems leaks the MACSEC key in clear text to a logged in user. An attacker with the credentials of a low privileged user could retrieve the MACSEC key and access decrypt the ethernet frames sent by authorized recipients. This plugin only works with Tenable.ot. Plea...
CVE-2023-52238
A vulnerability has been identified in RUGGEDCOM RST2228 All versions V5.9.0, RUGGEDCOM RST2228P All versions V5.9.0. The web server of the affected systems leaks the MACSEC key in clear text to a logged in user. An attacker with the credentials of a low privileged user could retrieve the MACSEC...