CVE-2022-1666 Information

Description

The default password for the web application’s root user (the vendor’s private account) was weak and the MD5 hash was used to crack the password using a widely available open-source tool.

Reference

https://www.cisa.gov/uscert/ics/advisories/icsa-22-174-03