First published: Wed Apr 20 2022(Updated: )
A malicious actor having access to the exported configuration file may obtain the stored credentials and thereby gain access to the protected resource. If the same passwords were used for other resources, further such assets may be compromised.
Credit: ics-cert@hq.dhs.gov
Affected Software | Affected Version | How to fix |
---|---|---|
Redlion Da50n Firmware | ||
Redlion Da50n | ||
Red Lion DA50N |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2022-27179.
The severity of CVE-2022-27179 is medium with a CVSSv3 score of 6.5.
CVE-2022-27179 allows a malicious actor with access to the exported configuration file to obtain stored credentials and potentially gain unauthorized access to protected resources.
The Redlion Da50n Firmware is affected by CVE-2022-27179.
To fix CVE-2022-27179, it is recommended to apply the latest firmware update provided by Redlion.