CVE-2024-52334

Summary

A vulnerability has been identified in syngo.plaza VB30E (All versions < VB30E_HF07). The affected application does not encrypt the passwords properly. This could allow an attacker to recover the original passwords and might gain unauthorized access.

Affected Software

VendorProductVersion RangeStatus
Siemenssyngo.plaza VB30E0 < VB30E_HF07affected

Weaknesses

  • CWE-261: CWE-261: Weak Encoding for Password

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References