CVE-2024-37187

Advantech ADAM-5550 share user credentials with a low level of encryption, consisting of base 64 encoding.
References
Link Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-01 Third Party Advisory US Government Resource
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:advantech:adam-5550_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:advantech:adam-5550:-:*:*:*:*:*:*:*

History

07 Oct 2024, 15:17

Type Values Removed Values Added
First Time Advantech adam-5550 Firmware
Advantech adam-5550
Advantech
CPE cpe:2.3:h:advantech:adam-5550:-:*:*:*:*:*:*:*
cpe:2.3:o:advantech:adam-5550_firmware:-:*:*:*:*:*:*:*
References () https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-01 - () https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-01 - Third Party Advisory, US Government Resource
CWE CWE-522

30 Sep 2024, 12:45

Type Values Removed Values Added
Summary
  • (es) Advantech ADAM-5550 comparte credenciales de usuario con un bajo nivel de cifrado, que consiste en codificación base 64.

27 Sep 2024, 18:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-27 18:15

Updated : 2024-10-07 15:17


NVD link : CVE-2024-37187

Mitre link : CVE-2024-37187

CVE.ORG link : CVE-2024-37187


JSON object : View

Products Affected

advantech

  • adam-5550
  • adam-5550_firmware
CWE
CWE-522

Insufficiently Protected Credentials

CWE-261

Weak Encoding for Password