Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Emerson OpenBSI through 2022-04-29 mishandles credential storage. It is an engineering environment for the ControlWave and Bristol Babcock line of RTUs. This environment provides access control functionality through user authentication and privilege management. The credentials for various users are stored insecurely in the SecUsers.ini file by using a simple string transformation rather than a cryptographic mechanism.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Emerson OpenBSI 加密问题漏洞
Vulnerability Description
Emerson OpenBSI是美国艾默生电气(Emerson)公司的专为技术人员、工程师和操作员设计的一组网络通信服务,提供对 ControlWave RTU 的访问。 Emerson OpenBSI 5.9 SP3 及之前版本存在加密问题漏洞,该漏洞源于使用损坏或有风险的加密算法。
CVSS Information
N/A
Vulnerability Type
N/A