PT-2018-6310 · Ice Qube · Ice Qube Thermal Management Center

Maxim Rupp

Published

2018-09-06

Updated

2019-10-09

CVE-2017-16714

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Ice Qube Thermal Management Center versions prior to 4.13

Description: The issue concerns the storage of passwords in plaintext within a file that can be accessed without authentication, posing a significant security risk.

Recommendations: For versions prior to 4.13, update to version 4.13 or later to resolve the issue of plaintext password storage.

Fix

Insufficiently Protected Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-522CWE-256

Related Identifiers

CVE-2017-16714

Affected Products

Ice Qube Thermal Management Center

PT-2018-6310 · Ice Qube · Ice Qube Thermal Management Center

CVE-2017-16714

Weakness Enumeration

Related Identifiers

Affected Products

References · 4