Vulnerabilities > Secheron > Sepcos Control AND Protection Relay Firmware > Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-24	CVE-2022-1666	Insufficiently Protected Credentials vulnerability in Secheron Sepcos Control and Protection Relay Firmware 1.23.0/1.24.0/1.25.0 The default password for the web application’s root user (the vendor’s private account) was weak and the MD5 hash was used to crack the password using a widely available open-source tool. network low complexity secheron CWE-522	6.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.