PT-2018-18115 · Beaconmedaes · Beaconmedaes Totalalert

Published

2018-06-06

Updated

2019-10-09

CVE-2018-7510

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions BeaconMedaes TotalAlert Scroll Medical Air Systems versions prior to 4107600010.23

Description The issue concerns the storage of passwords in plaintext within a file that can be accessed without authentication, potentially exposing sensitive information.

Recommendations For versions prior to 4107600010.23, update to version 4107600010.23 or later to resolve the issue. As a temporary workaround, consider restricting access to the file containing plaintext passwords to minimize the risk of exploitation.

Fix

Insufficiently Protected Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-522CWE-256

Related Identifiers

CVE-2018-7510

Affected Products

Beaconmedaes Totalalert

PT-2018-18115 · Beaconmedaes · Beaconmedaes Totalalert

CVE-2018-7510

Weakness Enumeration

Related Identifiers

Affected Products

References · 3