RSS   Vulnerabilities for 'Engineering tool software 6'   RSS

2021-11-09
 
CVE-2021-43575

CWE-798
 

 
** DISPUTED ** KNX ETS6 through 6.0.0 uses the hard-coded password ETS5Password, with a salt value of Ivan Medvedev, allowing local users to read project information, a similar issue to CVE-2021-36799. NOTE: The vendor disputes this because it is not the responsibility of the ETS to securely store cryptographic key material when it is not being exported.

 

 >>> Vendor: KNX 2 Products
ETS
Engineering tool software 6


Copyright 2024, cxsecurity.com

 

Back to Top