PT-2022-26920 · Fs040U · Fs040U
Tomohisa Hasegawa
·
Published
2022-12-05
·
Updated
2025-04-24
·
CVE-2022-43442
CVSS v3.1
4.6
Medium
| Vector | AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
+F FS040U versions v2.3.4 and earlier
Description
A plaintext storage of a password issue exists, which may allow an attacker to obtain the login password and log in to the management console.
Recommendations
For versions v2.3.4 and earlier, update to a version later than v2.3.4 to resolve the issue.
As a temporary workaround, consider restricting access to the management console to minimize the risk of exploitation.
Fix
Insufficiently Protected Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Fs040U