The EWON FLEXY 202 transmits credentials using a weak encoding method base64. An attacker who is present in the network can sniff the traffic and decode the credentials.
Metrics
Affected Vendors & Products
References
History
Thu, 17 Oct 2024 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 17 Oct 2024 18:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | The EWON FLEXY 202 transmits credentials using a weak encoding method base64. An attacker who is present in the network can sniff the traffic and decode the credentials. | |
Title | HMS Networks EWON FLEXY 202 Insufficiently Protected Credentials | |
Weaknesses | CWE-522 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2024-10-17T18:13:52.552Z
Updated: 2024-10-17T19:22:56.932Z
Reserved: 2024-08-13T17:11:14.080Z
Link: CVE-2024-7755
Vulnrichment
Updated: 2024-10-17T19:22:52.542Z
NVD
Status : Awaiting Analysis
Published: 2024-10-17T19:15:25.513
Modified: 2024-10-18T12:52:33.507
Link: CVE-2024-7755
Redhat
No data.