CVE-2022-34837

CWE-257CWE-522Insufficiently Protected Credentials3 documents3 sources
Severity
6.1MEDIUM
EPSS
0.0%
top 85.79%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
ABB ABB ZenonABB Zenon
Timeline
PublishedAug 24
Latest updateAug 25

Description

Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 8.20 allows an attacker who successfully exploit the vulnerability may add more network clients that may monitor various activities of the Zenon.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:LExploitability: 1.4 | Impact: 4.7

Affected Packages2 packages

NVDabb/zenon8.20
CVEListV5abb/abb_zenonunspecified8.20

🔴Vulnerability Details

2
GHSA
GHSA-qgw2-39j3-fghf: Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 82022-08-25
CVEList
ABB Ability TM Operations Data Management Zenon Zenon Log Server file access control2022-08-24
CVE-2022-34837 (MEDIUM CVSS 6.1) | Storing Passwords in a Recoverable | cvebase.io