Security Advisory

CVE-2021-34687

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-07-15 13:17:34
Last updated 2024-08-04 00:19:47
Assigner mitre
State PUBLISHED

Description

iDrive RemotePC before 7.6.48 on Windows allows information disclosure. A man in the middle can recover a systems Personal Key when a client attempts to make a LAN connection. The Personal Key is transmitted over the network while only being encrypted via a substitution cipher.