Headline
CVE-2021-41300: TWCERT/CC台灣電腦網路危機處理暨協調中心-ECOA BAS controller - Insufficiently Protected Credentials-2
ECOA BAS controller’s special page displays user account and passwords in plain text, thus unauthenticated attackers can access the page and obtain privilege with full functionality.