CVE-2022-34838

CWE-257CWE-522Insufficiently Protected Credentials3 documents3 sources
Severity
8.4HIGH
EPSS
0.1%
top 84.66%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
ABB ABB ZenonABB Zenon
Timeline
PublishedAug 24
Latest updateAug 25

Description

Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 8.20 allows an attacker who successfully exploit the vulnerability may add or alter data points and corresponding attributes. Once such engineering data is used the data visualization will be altered for the end user.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:HExploitability: 1.4 | Impact: 6.0

Affected Packages2 packages

NVDabb/zenon8.20
CVEListV5abb/abb_zenonunspecified8.20

🔴Vulnerability Details

2
GHSA
GHSA-gm2j-544r-33fw: Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 82022-08-25
CVEList
ABB Ability TM Operations Data Management Zenon Zenon Log Server file access control2022-08-24
CVE-2022-34838 (HIGH CVSS 8.4) | Storing Passwords in a Recoverable | cvebase.io