Описание
An issue was discovered in MSA FieldServer Gateway 5.0.0 through 6.5.2 (Fixed in 7.0.0). The FieldServer Gateway has an internally used shared administrative user account on all devices. The authentication for this user is implemented through an unsafe shared secret that is static in all affected firmware versions.
EPSS
Процентиль: 31%
0.0012
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-276
Связанные уязвимости
CVSS3: 9.8
github
около 1 года назад
An issue was discovered in MSA Safety FieldServer Gateways and Embedded Modules with build revisions before 7.0.0. The FieldServer Gateway has an internally used shared administrative user account on all devices. The authentication for this user is implemented through an unsafe shared secret that is static in all affected firmware versions.
EPSS
Процентиль: 31%
0.0012
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-276