CVE-2023-46294

May 1, 2024, 8:15 p.m.

None
No Score

Description

An issue was discovered in Teledyne FLIR M300 2.00-19. User account passwords are encrypted locally, and can be decrypted to cleartext passwords using the utility umSetup. This utility requires root permissions to execute.

Product(s) Impacted

Product Versions
Teledyne FLIR M300
  • 2.00-19

Weaknesses

References

https://Loudmouth.io
https://gitlab.com/loudmouth-security/vulnerability-disclosures/cve-2023-46294

Tags

2024-05-01
cve@mitre.org
CVE-2023-46294

Date

  • Published: May 1, 2024, 8:15 p.m.
  • Last Modified: May 1, 2024, 8:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.