PT-2019-15009 · V Zug · V-Zug Combi-Steam Mslq

Marc Ruef

Published

2019-10-06

Updated

2020-08-24

CVE-2019-17216

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions V-Zug Combi-Steam MSLQ devices before Ethernet R07 V-Zug Combi-Steam MSLQ devices before WLAN R05

Description An issue was discovered where password authentication uses MD5 to hash passwords, allowing cracking with minimal effort.

Recommendations For V-Zug Combi-Steam MSLQ devices before Ethernet R07, update to Ethernet R07 or later to resolve the issue. For V-Zug Combi-Steam MSLQ devices before WLAN R05, update to WLAN R05 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-916

Related Identifiers

CVE-2019-17216

Affected Products

V-Zug Combi-Steam Mslq

PT-2019-15009 · V Zug · V-Zug Combi-Steam Mslq

CVE-2019-17216

Weakness Enumeration

Related Identifiers

Affected Products

References · 3