exploitDog

CVE-2022-43460

Опубликовано: 13 фев. 2023

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

Driver Distributor v2.2.3.1 and earlier contains a vulnerability where passwords are stored in a recoverable format. If an attacker obtains a configuration file of Driver Distributor, the encrypted administrator's credentials may be decrypted.

Ссылки

https://jvn.jp/en/jp/JVN22830348/
Third Party Advisory
https://www.fujifilm.com/fbglobal/eng/company/news/notice/2023/0131_announce.html
Vendor Advisory
https://jvn.jp/en/jp/JVN22830348/
Third Party Advisory
https://www.fujifilm.com/fbglobal/eng/company/news/notice/2023/0131_announce.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:fujifilm:driver_distributor:*:*:*:*:*:*:*:*

Версия до 2.2.3.1 (включая)

EPSS

Процентиль: 46%

0.00236

Низкий

7.5 High

CVSS3

Дефекты

CWE-522

CWE-522

Связанные уязвимости

GHSA-7fhv-rp66-q6r9

CVSS3: 7.5

github

почти 3 года назад

Driver Distributor v2.2.3.1 and earlier contains a vulnerability where passwords are stored in a recoverable format. If an attacker obtains a configuration file of Driver Distributor, the encrypted administrator's credentials may be decrypted.

EPSS

Процентиль: 46%

0.00236

Низкий

7.5 High

CVSS3

Дефекты

CWE-522

CWE-522