ГлавнаяУязвимости → CVE-2023-50894
8.8высокая

CVE-2023-50894

Описание

In Janitza GridVis through 9.0.66, use of hard-coded credentials in the de.janitza.pasw.feature.impl.activators.PasswordEncryption password encryption function allows remote authenticated administrative users to discover cleartext database credentials contained in error report information.

Затрагиваемое ПО
Janitza Gridvis
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://code-white.comhttps://code-white.com/public-vulnerability-list/https://code-white.comhttps://code-white.com/public-vulnerability-list/