Security Advisory

CVE-2021-3252

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-02-23 14:15:32

Last updated 2024-08-03 16:53:16

Assigner mitre

State PUBLISHED

Description

KACO New Energy XP100U Up to XP-JAVA 2.0 is affected by incorrect access control. Credentials will always be returned in plain-text from the local server during the KACO XP100U authentication process, regardless of whatever passwords have been provided, which leads to an information disclosure vulnerability.

← Browse all CVEs View on cve.org ↗