Vulnerabilities > CVE-2023-0451 - Unspecified vulnerability in Econolite EOS
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
Econolite EOS versions prior to 3.2.23 lack a password requirement for gaining “READONLY” access to log files and certain database and configuration files. One such file contains tables with MD5 hashes and usernames for all defined users in the control software, including administrators and technicians.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |