Main Vulnerability Database Vulnerabilities #VU85752

Cleartext transmission of sensitive information in Lynx 206-F2G - CVE-2023-40544

Published: January 24, 2024

Vulnerability identifier: #VU85752

CSH Severity: Low

CVSSv4.0: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2023-40544

CWE-ID: CWE-319

Exploitation vector: Adjecent network

Exploit availability: No public exploit available

Vulnerable software:
Lynx 206-F2G

Software vendor:
Westermo

Description

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to software uses insecure communication channel to transmit sensitive information. A remote attacker with ability to intercept network traffic can gain access to sensitive data.

Remediation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

External links

https://www.cisa.gov/news-events/ics-advisories/icsa-24-023-04

Cleartext transmission of sensitive information in Lynx 206-F2G - CVE-2023-40544

Description

Remediation

External links

Please verify you're human