CVE-2023-31150

Published: May 10, 2023Modified: Nov 21, 2024

6.5

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

A Storing Passwords in a Recoverable Format vulnerability in the Schweitzer Engineering Laboratories Real-Time Automation Controller (SEL RTAC) database system could allow an authenticated attacker to retrieve passwords. See SEL Service Bulletin dated 2022-11-15 for more details.

Affected (10)

Products: Selinc: Sel 2241 Rtac Module Firmware, Sel 3350 Firmware, Sel 3505 Firmware, Sel 3505 3 Firmware, Sel 3530 Firmware, Sel 3530 4 Firmware, Sel 3532 Firmware, Sel 3555 Firmware, Sel 3560e Firmware, Sel 3560s Firmware

Selinc

10 products

Sel 2241 Rtac Module Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selinc Sel 2241 Rtac Module Firmware	From r122-v0 to r150-v2

Running on/with	Platform Versions
Selinc Sel 2241 Rtac Module	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selinc Sel 3350 Firmware	From r148-v0 to r150-v2

Running on/with	Platform Versions
Selinc Sel 3350	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selinc Sel 3505 Firmware	From r122-v0 to r150-v2

Running on/with	Platform Versions
Selinc Sel 3505	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selinc Sel 3505 3 Firmware	From r132-v0 to r150-v2

Running on/with	Platform Versions
Selinc Sel 3505 3	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selinc Sel 3530 Firmware	From r122-v0 to r150-v2

Running on/with	Platform Versions
Selinc Sel 3530	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selinc Sel 3530 4 Firmware	From r122-v0 to r150-v2

Running on/with	Platform Versions
Selinc Sel 3530 4	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selinc Sel 3532 Firmware	From r132-v0 to r150-v2

Running on/with	Platform Versions
Selinc Sel 3532	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selinc Sel 3555 Firmware	From r134-v0 to r150-v2

Running on/with	Platform Versions
Selinc Sel 3555	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selinc Sel 3560e Firmware	From r144-v2 to r150-v2

Running on/with	Platform Versions
Selinc Sel 3560e	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selinc Sel 3560s Firmware	From r144-v2 to r150-v2

Running on/with	Platform Versions
Selinc Sel 3560s	All versions

Related CWEs

CWE-257

Storing Passwords in a Recoverable Format

The storage of passwords in a recoverable format makes them subject to password reuse attacks by malicious users. In fact, it should be noted that recoverable encrypted passwords provide no significant benefit over plaintext passwords since they are subject not only to reuse by malicious attackers but also by malicious insiders. If a system administrator can recover a password directly, or use a brute force search on the available information, the administrator can use the password on other accounts.

CWE-922

Insecure Storage of Sensitive Information

The product stores sensitive information without properly limiting read or write access by unauthorized actors.

References (4)

https://selinc.com/support/security-notifications/external-reports/

Source: security@selinc.com

Vendor Advisory

https://www.nozominetworks.com/blog/

Source: security@selinc.com

Third Party Advisory

https://selinc.com/support/security-notifications/external-reports/

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://www.nozominetworks.com/blog/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.