Описание
A Weak Cryptography for Passwords vulnerability has been detected on WIC200 affecting version 1.1. This vulnerability allows a remote user to intercept the traffic and retrieve the credentials from another user and decode it in base64 allowing the attacker to see the credentials in plain text.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:xantech:wic1200_firmware:1.1:*:*:*:*:*:*:*
cpe:2.3:h:xantech:wic1200:-:*:*:*:*:*:*:*
EPSS
Процентиль: 40%
0.00181
Низкий
7.1 High
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-261
Связанные уязвимости
CVSS3: 7.1
github
около 2 лет назад
A Weak Cryptography for Passwords vulnerability has been detected on WIC200 affecting version 1.1. This vulnerability allows a remote user to intercept the traffic and retrieve the credentials from another user and decode it in base64 allowing the attacker to see the credentials in plain text.
EPSS
Процентиль: 40%
0.00181
Низкий
7.1 High
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-261