It is possible to download the configuration backup without authorization and decrypt included passwords using hardcoded static key.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: CERT-PL
Published: 2024-01-12T14:24:20.325Z
Updated: 2024-08-02T21:53:44.807Z
Reserved: 2023-11-24T11:53:46.294Z
Link: CVE-2023-49256
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2024-01-12T15:15:09.160
Modified: 2024-01-18T21:14:03.490
Link: CVE-2023-49256
Redhat
No data.