Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
HMS Networks EWON FLEXY 202 Insufficiently Protected Credentials
Vulnerability Description
The EWON FLEXY 202 transmits credentials using a weak encoding method base64. An attacker who is present in the network can sniff the traffic and decode the credentials.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N
Vulnerability Type
不充分的凭证保护机制
Vulnerability Title
HMS EWON FLEXY 202 安全漏洞
Vulnerability Description
HMS EWON FLEXY 202是瑞典HMS公司的一个多用途 IIoT 数据网关。允许机器制造商和用户监控和收集重要的 KPI,以便进行分析和预测性维护。 HMS EWON FLEXY 202 14.2s0版本存在安全漏洞,该漏洞源于使用弱编码方法base64传输凭据,导致攻击者可以嗅探流量并解码凭据。
CVSS Information
N/A
Vulnerability Type
N/A