CVE-2023-42493

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 25, 2023

Updated: Nov 1, 2023

CWE ID 256

Summary

CVE-2023-42493 is a newly identified vulnerability affecting the EisBaer SCADA system. The issue resides in the storage of plaintext passwords, which contravenes best security practices. Specifically, the CWE-256 weakness exposes passwords in readable format, increasing the risk of unauthorized access. This vulnerability could potentially enable attackers to gain control of the SCADA system and cause significant harm. Organizations using EisBaer SCADA are advised to address this issue promptly by implementing secure password storage methods to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sprqkw
https://www.cve.org/CVERecord?id=CVE-2023-42493
https://nvd.nist.gov/vuln/detail/CVE-2023-42493

Back to Vulnerability Database

CVE-2023-42493

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations