CNNVD-202507-277 Information
CNNVD ID
CNNVD-202507-277
Related CVE
- CNNVD Published: 2025-07-03
Description (Chinese)
Endress+Hauser MEAC300-FNADE4是越南Endress+Hauser公司的一款具有成本效益的排放数据管理计算机。 Endress+Hauser MEAC300-FNADE4存在安全漏洞,该漏洞源于基于挑战响应系统的认证机制使用相同密码加密,可能导致密码泄露。
Description (English)
Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions management computer for Endress+Hauser, Viet Nam. Endress+Hauser MEAC300-FNADE4 has a security loophole, which stems from the fact that the authentication mechanism based on the Challenge Response System is encrypted using the same password, which may lead to a password leak.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Endress+Hauser
Published
2025-07-03
Last Modified
2026-02-24
References
https://sick.com/psirt https://www.cisa.gov/resources-tools/resources/ics-recommended-practices https://www.endress.com https://www.first.org/cvss/calculator/3.1 https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0008.json https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0008.pdf
Patch
https://www.endress.com/en/search?filter.text=MEAC300-FNADE4
Share on: