PT-2024-29471 · Texas Instruments · Texas Instruments Fusion Digital Power Designer

Gionathan Armando Reale

Published

2024-09-02

Updated

2024-09-13

CVE-2024-41629

CVSS v3.1

6.6

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

Name of the Vulnerable Software and Affected Versions Texas Instruments Fusion Digital Power Designer version 7.10.1

Description The issue allows a local attacker to obtain sensitive information via the plaintext storage of credentials. This is due to insufficiently protected credentials in the software.

Recommendations For Texas Instruments Fusion Digital Power Designer version 7.10.1, consider updating to a newer version that addresses the plaintext storage of credentials issue. As a temporary workaround, restrict access to sensitive information stored by the software to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Cleartext Storage of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200CWE-312

Related Identifiers

CVE-2024-41629

Affected Products

Texas Instruments Fusion Digital Power Designer

CVE-2024-41629

Weakness Enumeration

Related Identifiers

Affected Products

References · 9