The web application that owns the device clearly stores the credentials within the user management section. Obtaining this information can be done remotely due to the incorrect management of the sessions in the web application.
Metrics
Affected Vendors & Products
References
History
Wed, 25 Sep 2024 16:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2023-09-18T20:01:05.148Z
Updated: 2024-09-25T15:34:56.243Z
Reserved: 2023-09-06T15:41:16.546Z
Link: CVE-2023-39452
Vulnrichment
Updated: 2024-08-02T18:10:20.700Z
NVD
Status : Modified
Published: 2023-09-18T21:16:04.367
Modified: 2024-11-21T08:15:27.053
Link: CVE-2023-39452
Redhat
No data.