| |
Podatność CVE-2024-0323
Publikacja: 2024-02-05
Opis: |
The FTP server used on the B&R
Automation Runtime supports unsecure encryption mechanisms, such as SSLv3,
TLSv1.0 and TLS1.1. An network-based attacker can exploit the flaws to conduct
man-in-the-middle attacks or to decrypt communications between the affected product
clients.
|
Typ:
CWE-327 (Use of a Broken or Risky Cryptographic Algorithm)
Referencje: |
https://www.br-automation.com/fileadmin/SA23P004_FTP_uses_unsecure_encryption_mechanisms-f57c147c.pdf
|
|
|
Copyright 2024, cxsecurity.com
|
|
|