Vulnerabilities

CVE-2024-1040

by Fred · 01/02/2024

Gessler GmbH WEB-MASTER user account is stored using a weak hashing algorithm. The attacker can restore the passwords by breaking the hashes stored on the device.

More information : https://www.cisa.gov/news-events/ics-advisories/icsa-24-032-01

Attack vector : LOCAL
Attack complexity : LOW
Privileges required : HIGH
User interaction : NONE
Confidentiality impact : HIGH
Integrity impact : NONE
Base score : 4.4
Base severity : MEDIUM
Exploitability score : 0.8
Impact score : 3.6

Similar

Tags: Cybersecurity Alert