CVE-2022-38469

Name of the Vulnerable Software and Affected Versions GE Proficy Historian (affected versions not specified)

Description The issue is related to weak password cryptography in the platform. An unauthorized user with network access and the decryption key could decrypt sensitive data, such as usernames and passwords. This could allow a remote attacker to gain unauthorized access to protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.