CVE-2022-43460

Summary

Driver Distributor v2.2.3.1 and earlier contains a vulnerability where passwords are stored in a recoverable format. If an attacker obtains a configuration file of Driver Distributor, the encrypted administrator's credentials may be decrypted.

Affected Software

VendorProductVersion RangeStatus
FUJIFILM Business Innovation Corp.Driver Distributorv2.2.3.1 and earlieraffected

Weaknesses

  • Storing passwords in a recoverable format

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References