Indracontrol XLC Firmware

DATE	CVE	VULNERABILITY TITLE	RISK
2021-10-04	CVE-2021-23858	Missing Authentication for Critical Function vulnerability in Bosch products Information disclosure: The main configuration, including users and their hashed passwords, is exposed by an unprotected web server resource and can be accessed without authentication. network low complexity bosch CWE-306	7.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.