CVE-2024-45494 Information

Description

An issue was discovered in MSA Safety FieldServer Gateways and Embedded Modules with build revisions before 7.0.0. The FieldServer Gateway has an internally used shared administrative user account on all devices. The authentication for this user is implemented through an unsafe shared secret that is static in all affected firmware versions.

Reference

https://us.msasafety.com/fieldserver https://us.msasafety.com/security-notices