2021-09-30 10:41:05
twcert
PUBLISHED
ECOA BAS controller’s special page displays user account and passwords in plain text, thus unauthenticated attackers can access the page and obtain privilege with full functionality.