Podatność CVE-2023-34353


Publikacja: 2023-09-05

Opis:
An authentication bypass vulnerability exists in the OAS Engine authentication functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted network sniffing can lead to decryption of sensitive information. An attacker can sniff network traffic to trigger this vulnerability.

Typ:

CWE-330

(Use of Insufficiently Random Values)

 Referencje:
https://talosintelligence.com/vulnerability_reports/TALOS-2023-1776

Copyright 2024, cxsecurity.com

 

Back to Top