CVE-2016-4511

CWE-3103 documents3 sources
Severity
2.8LOW
EPSS
0.1%
top 84.53%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
ABB Pcm600
Timeline
PublishedJun 10
Latest updateMay 17

Description

ABB PCM600 before 2.7 uses an improper hash algorithm for the main application password, which makes it easier for local users to obtain sensitive cleartext information by leveraging read access to the ACTConfig configuration file.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:NExploitability: 1.3 | Impact: 1.4

Affected Packages1 packages

NVDabb/pcm6002.6

🔴Vulnerability Details

2
GHSA
GHSA-7xf7-47f3-rm7v: ABB PCM600 before 22022-05-17
CVEList
CVE-2016-4511: ABB PCM600 before 22016-06-10
CVE-2016-4511 (LOW CVSS 2.8) | ABB PCM600 before 2.7 uses an impro | cvebase.io