CNNVD-202507-278 Information

CNNVD ID

CNNVD-202507-278

Related CVE

CVE-2025-27459

• CNNVD Published: 2025-07-03

Description (Chinese)

Endress+Hauser MEAC300-FNADE4是越南Endress+Hauser公司的一款具有成本效益的排放数据管理计算机。 Endress+Hauser MEAC300-FNADE4存在安全漏洞，该漏洞源于使用DES加密存储密码，可能导致密码恢复。

Description (English)

Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions management computer for Endress+Hauser, Viet Nam. There is a security loophole in Endress+Hauser MEAC300-FNADE4, which stems from the use of DES to encrypt and store passwords, which may lead to their restoration.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Endress+Hauser

Published

2025-07-03

Last Modified

2026-02-24

References

https://sick.com/psirt https://www.cisa.gov/resources-tools/resources/ics-recommended-practices https://www.endress.com https://www.first.org/cvss/calculator/3.1 https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0008.json https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0008.pdf

Patch

https://www.endress.com/en/field-instruments-overview/optical-analysis-product-overview/meac300?t.tabId=product-downloads