Vulnerability CVE-2023-34353


Published: 2023-09-05

Description:
An authentication bypass vulnerability exists in the OAS Engine authentication functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted network sniffing can lead to decryption of sensitive information. An attacker can sniff network traffic to trigger this vulnerability.

Type:

CWE-330

(Use of Insufficiently Random Values)

 References:
https://talosintelligence.com/vulnerability_reports/TALOS-2023-1776

Copyright 2024, cxsecurity.com

 

Back to Top