Security Advisory

CVE-2023-0451

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-01-26 20:37:53

Last updated 2025-01-16 21:59:03

Assigner icscert

State PUBLISHED

Description

Econolite EOS versions prior to 3.2.23 lack a password requirement for gaining “READONLY” access to log files and certain database and configuration files. One such file contains tables with MD5 hashes and usernames for all defined users in the control software, including administrators and technicians.

← Browse all CVEs View on cve.org ↗