Design/Logic Flaw

2023-05-2222:15:00

PRIOn knowledge base

www.prio-n.com

dataprobe cloud

plain text

usernames and passwords

compromise

connected devices

security flaw

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.2%

JSON

The Dataprobe cloud usernames and passwords are stored in plain text in a specific file. Any user able to read this specific file from the device could compromise other devices connected to the user’s cloud.

CPENameOperatorVersion
iboot-pdu4-c20_firmwarelt1.42.06162022
iboot-pdu4-n20_firmwarelt1.42.06162022
iboot-pdu4a-c10_firmwarelt1.42.06162022
iboot-pdu4a-c20_firmwarelt1.42.06162022
iboot-pdu4a-n15_firmwarelt1.42.06162022
iboot-pdu4a-n20_firmwarelt1.42.06162022
iboot-pdu4sa-c10_firmwarelt1.42.06162022
iboot-pdu4sa-c20_firmwarelt1.42.06162022
iboot-pdu4sa-n15_firmwarelt1.42.06162022
iboot-pdu4sa-n20_firmwarelt1.42.06162022

Name	Operator	Version
iboot-pdu4-c20_firmware	lt	1.42.06162022
iboot-pdu4-n20_firmware	lt	1.42.06162022
iboot-pdu4a-c10_firmware	lt	1.42.06162022
iboot-pdu4a-c20_firmware	lt	1.42.06162022
iboot-pdu4a-n15_firmware	lt	1.42.06162022
iboot-pdu4a-n20_firmware	lt	1.42.06162022
iboot-pdu4sa-c10_firmware	lt	1.42.06162022
iboot-pdu4sa-c20_firmware	lt	1.42.06162022
iboot-pdu4sa-n15_firmware	lt	1.42.06162022
iboot-pdu4sa-n20_firmware	lt	1.42.06162022