exploitDog

GHSA-w7rj-j5f6-772g

Опубликовано: 12 июл. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

The CODESYS OPC DA Server prior V3.5.18.20 stores PLC passwords as plain text in its configuration file so that it is visible to all authorized Microsoft Windows users of the system.

The CODESYS OPC DA Server prior V3.5.18.20 stores PLC passwords as plain text in its configuration file so that it is visible to all authorized Microsoft Windows users of the system.

Ссылки

EPSS

Процентиль: 30%

0.00111

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-256

CWE-522

Связанные уязвимости

CVE-2022-1794

CVSS3: 5.5

nvd

больше 3 лет назад

The CODESYS OPC DA Server prior V3.5.18.20 stores PLC passwords as plain text in its configuration file so that it is visible to all authorized Microsoft Windows users of the system.

EPSS

Процентиль: 30%

0.00111

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-256

CWE-522