Headline

CVE-2023-23588

A vulnerability has been identified in SIMATIC IPC1047 (All versions), SIMATIC IPC1047E (All versions with maxView Storage Manager < 4.09.00.25611 on Windows), SIMATIC IPC647D (All versions), SIMATIC IPC647E (All versions with maxView Storage Manager < 4.09.00.25611 on Windows), SIMATIC IPC847D (All versions), SIMATIC IPC847E (All versions with maxView Storage Manager < 4.09.00.25611 on Windows). The Adaptec Maxview application on affected devices is using a non-unique TLS certificate across installations to protect the communication from the local browser to the local application. A local attacker may use this key to decrypt intercepted local traffic between the browser and the application and could perform a man-in-the-middle attack in order to modify data in transit.

1 year ago

CVE

Open in Source

#vulnerability #windows #pdf #ssl

%PDF-1.5 %�� 60 0 obj << /Length 2627 /Filter /FlateDecode >> stream x��[[s�6~��#5S��$�t��줝F�mNu+I�ɿ��I��PNb� pp��9�x�^��k��)ov��<�DR��’�"�W�:�L�6�E<�M’S*�$��N_�l�I�� ǭ��fq;�O_��`�l��ףW��(

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

12 months ago

12 months ago

12 months ago

12 months ago

12 months ago