Tbox Ms-cpu32-s2 Firmware Security Vulnerabilities and Issues — Tbox Ms-cpu32-s2 Firmware CVE List

Lucene search

OvarroTbox Ms-cpu32-s2 Firmware

3 matches found

CVE•added 2023/07/03 9:15 p.m.•21 views

CVE-2023-36611

The affected TBox RTUs allow low privilege users to access software security tokens of higher privilege. This could allow an attacker with “user” privileges to access files requiring higher privileges by establishing an SSH session and providing the other tokens.

6.5CVSS6.4AI score0.00082EPSS

CVE•added 2023/07/03 8:15 p.m.•20 views

CVE-2023-36608

The affected TBox RTUs store hashed passwords using MD5 encryption, which is an insecure encryption algorithm.

6.5CVSS6.5AI score0.00045EPSS

CVE•added 2023/07/03 9:15 p.m.•19 views

CVE-2023-3395

All versions of the TWinSoft Configuration Tool store encrypted passwords as plaintext in memory. An attacker with access to system files could open a file to load the document into memory, including sensitive information associated with document, such as password. The attacker could then obtain t...

6.5CVSS6.3AI score0.00038EPSS