The cloud provider MachineSense uses for integration and deployment for multiple MachineSense devices, such as the programmable logic controller (PLC), PumpSense, PowerAnalyzer, FeverWarn, and others is insufficiently protected against unauthorized access. An attacker with access to the internal procedures could view source code, secret credentials, and more.
References
Link | Resource |
---|---|
https://machinesense.com/pages/about-machinesense | Product |
https://www.cisa.gov/news-events/ics-advisories/icsa-24-025-01 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2024-02-01T22:18:31.089Z
Updated: 2024-02-01T22:18:31.089Z
Reserved: 2023-11-20T18:36:30.804Z
Link: CVE-2023-6221
JSON object: View
NVD Information
Status : Modified
Published: 2024-02-01T23:15:10.510
Modified: 2024-05-17T02:33:35.137
Link: CVE-2023-6221
JSON object: View
Redhat Information
No data.
CWE