2 matches found
CVE-2023-0452
Summary of CVE-2023-0452 : Econolite EOS before 3.2.23 uses a weak hash (MD5) to encrypt privileged credentials in a configuration file that is accessible without authentication. This can expose administrator/technician credentials and related data. The issue is documented in multiple connected s...
CVE-2023-0451
CVE-2023-0451 affects Econolite EOS; EOS versions prior to 3.2.23 lack a password requirement for READONLY access to log files and certain databases/configuration files. Affected files reportedly contain MD5-hashed credentials and usernames for all defined users (including admins/techs), reflecti...