CVE-2022-3217

Name of the Vulnerable Software and Affected Versions VBASE (affected versions not specified)

Description The issue concerns the use of XOR with a static initial key to obfuscate login messages when logging in to a VBASE runtime project via Web-Remote. This allows an unauthenticated remote attacker who can capture a login session to obtain the login credentials.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.