Total
4 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-23492 | 2024-05-17 | N/A | 5.7 MEDIUM | ||
| A weak encoding is used to transmit credentials for WS203VICM. | |||||
| CVE-2023-7237 | 1 Lantronix | 2 Xport Edge, Xport Edge Firmware | 2024-05-17 | N/A | 7.5 HIGH |
| Lantronix XPort sends weakly encoded credentials within web request headers. | |||||
| CVE-2024-0556 | 1 Xantech | 2 Wic1200, Wic1200 Firmware | 2024-01-23 | N/A | 6.5 MEDIUM |
| A Weak Cryptography for Passwords vulnerability has been detected on WIC200 affecting version 1.1. This vulnerability allows a remote user to intercept the traffic and retrieve the credentials from another user and decode it in base64 allowing the attacker to see the credentials in plain text. | |||||
| CVE-2023-0356 | 1 Socomec | 2 Modulys Gp, Net Vision | 2023-12-10 | N/A | 7.5 HIGH |
| SOCOMEC MODULYS GP Netvision versions 7.20 and prior lack strong encryption for credentials on HTTP connections, which could result in threat actors obtaining sensitive information. | |||||