Passwords are stored in plain text within the configuration of SICK Package Analytics software up to and including V04.1.1. An authorized attacker could access these stored plaintext credentials and gain access to the ftp service. Storing a password in plaintext allows attackers to easily gain access to systems, potentially compromising personal information or other sensitive information.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: SICK AG
Published: 2020-07-29T13:19:01
Updated: 2020-07-29T13:19:01
Reserved: 2019-12-04T00:00:00
Link: CVE-2020-2078
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-07-29T14:15:12.973
Modified: 2020-08-03T17:11:55.363
Link: CVE-2020-2078
JSON object: View
Redhat Information
No data.
CWE