CVE-2021-27457

Summary

A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected products utilize a weak encryption algorithm for storage of sensitive data, which may allow an attacker to more easily obtain credentials used for access.

Affected Software

VendorProductVersion RangeStatus
n/aEmerson Rosemount X-STREAM Gas AnalyzerX-STREAM enhanced XEGP – all revisions, X-STREAM enhanced XEGK – all revisions, X-STREAM enhanced XEFD – all revisions, X-STREAM enhanced XEXF – all revisionsaffected

Weaknesses

  • CWE-326: INADEQUATE ENCRYPTION STRENGTH CWE-326

ADP Enrichment

CVE Program Container

Additional References

References