CVE-2018-17922

Circontrol CirCarLife all versions prior to 4.3.1, the PAP credentials of the device are stored in clear text in a log file that is accessible without authentication.
References
Link Resource
https://ics-cert.us-cert.gov/advisories/ICSA-18-305-03 Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/105816 Third Party Advisory VDB Entry
Configurations

Configuration 1


Information

Published : 2018-11-02 03:29

Updated : 2019-10-09 11:37


NVD link : CVE-2018-17922

Mitre link : CVE-2018-17922

Products Affected
No products.
CWE
CWE-532

Insertion of Sensitive Information into Log File