CVE-2024-0556

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jan 16, 2024

Updated: Jan 23, 2024

CWE ID 261

Summary

CVE-2024-0556 is a newly identified vulnerability affecting WIC200 version 1.1. This issue involves weak cryptography for passwords, permitting remote users to intercept traffic and decode intercepted credentials in base64. The vulnerability exposes plain text credentials to attackers, posing a significant risk to security. Users are strongly urged to update their WIC200 systems to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Xantech

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uJnrTw
https://www.cve.org/CVERecord?id=CVE-2024-0556
https://nvd.nist.gov/vuln/detail/CVE-2024-0556

Back to Vulnerability Database

CVE-2024-0556

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations