Security Advisory

CVE-2022-3217

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-09-16 20:15:34

Last updated 2024-08-03 01:00:10

Assigner tenable

State PUBLISHED

Description

When logging in to a VBASE runtime project via Web-Remote, the product uses XOR with a static initial key to obfuscate login messages. An unauthenticated remote attacker with the ability to capture a login session can obtain the login credentials.

← Browse all CVEs View on cve.org ↗