CVE-2018-19023
N/A
N/A
Summary
Hetronic Nova-M prior to verson r161 uses fixed codes that are reproducible by sniffing and re-transmission. This can lead to unauthorized replay of a command, spoofing of an arbitrary message, or keeping the controlled load in a permanent "stop" state.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Hetronic | Hetronic Nova-M | All versions prior to version r161 | affected |
Weaknesses
- CWE-294: AUTHENTICATION BYPASS BY CAPTURE-REPLAY CWE-294
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.