CVE-2023-31176 Information

Description

An Insufficient Entropy vulnerability in the Schweitzer Engineering Laboratories SEL-451 could allow an unauthenticated remote attacker to brute-force session tokens and bypass authentication. 

See product Instruction Manual Appendix A dated 20230830 for more details.

Reference

https://selinc.com/support/security-notifications/external-reports/ https://www.nozominetworks.com/blog/