CVE-2023-28441

Name of the Vulnerable Software and Affected Versions smartCARS 3 versions 0.5.8 and prior

Description The issue affects smartCARS 3, a flight tracking software. In the affected versions, failed login attempts result in passwords being stored in error logs. This does not occur in version 0.5.9.

Recommendations For versions 0.5.8 and prior, as a workaround, delete the affected log file and ensure correct login to prevent password storage in error logs. At the moment, there is no information about a newer version that contains a fix for this vulnerability, but it is known that version 0.5.9 does not have this problem.