CVE-2021-34571

Summary

Multiple Wireless M-Bus devices by Enbra use Hard-coded Credentials in Security mode 5 without an option to change the encryption key. An adversary can learn all information that is available in Enbra EWM.

Affected Software

VendorProductVersion RangeStatus
EnbraAT-WMBUS-16-2allunknown
EnbraER-AM DN 15ER-AM DN 15/SV allunknown
EnbraER-AM DN 15ER-AM DN 15/TV allunknown
EnbraEWM 1.7.2903.11.2019affected

Weaknesses

  • CWE-798: CWE-798 Use of Hard-coded Credentials

ADP Enrichment

CVE Program Container

Additional References

References