Echelon SmartServer 2.2 with i.LON Vision 2.2 stores cleartext credentials in a file, which could allow an attacker to obtain cleartext usernames and passwords of the SmartServer. If the attacker obtains the file, then the credentials could be used to control the web user interface and file transfer protocol (FTP) server.
References
Link | Resource |
---|---|
https://www.cisa.gov/uscert/ics/advisories/icsa-23-037-01 | Broken Link |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2023-02-13T16:28:57.920Z
Updated:
Reserved: 2022-09-01T18:57:05.237Z
Link: CVE-2022-3089
JSON object: View
NVD Information
Status : Modified
Published: 2023-02-13T17:15:10.763
Modified: 2023-11-07T03:50:46.437
Link: CVE-2022-3089
JSON object: View
Redhat Information
No data.