CVE-2021-22731

Weak Password Recovery Mechanism for Forgotten Password vulnerability exists on Modicon Managed Switch MCSESM* and MCSESP* V8.21 and prior which could cause an unauthorized password change through HTTP / HTTPS when basic user information is known by a remote attacker.
References
Configurations

Configuration 1


Information

Published : 2021-05-26 08:15

Updated : 2022-02-01 06:12


NVD link : CVE-2021-22731

Mitre link : CVE-2021-22731

Products Affected
No products.
CWE
CWE-640

Weak Password Recovery Mechanism for Forgotten Password