Leonard Lewedei

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue allows the distribution of malicious code using SDD Device Drivers due to missing download verification checks, leading to code execution on target systems. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue concerns the use of an unencrypted, proprietary protocol for communication, which allows an attacker to intercept the authentication hash. This hash can then be used to log into the device using a pass-the-hash attack. The protocol is used for transmitting configuration data and performing device authentication. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The device uses a weak hashing algorithm to create the password hash, allowing an attacker to easily calculate a matching password. This impacts the security and integrity of the device. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.