SAUTER Controls Nova 200–220 Series with firmware version 3.3-006 and
prior and BACnetstac version 4.2.1 and prior have only FTP and Telnet
available for device management. Any sensitive information communicated
through these protocols, such as credentials, is sent in cleartext. An
attacker could obtain sensitive information such as user credentials to
gain access to the system.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.cisa.gov/uscert/ics/advisories/icsa-23-012-05 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2023-03-02T00:15:49.817Z
Updated: 2024-08-02T04:54:32.601Z
Reserved: 2023-01-04T16:24:06.705Z
Link: CVE-2023-0053
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-03-02T01:15:11.590
Modified: 2024-11-21T07:36:28.010
Link: CVE-2023-0053
Redhat
No data.