CVE-2020-28214

USE OF A ONE-WAY HASH WITH A PREDICTABLE SALT CWE-760
A use of a one-way hash with a predictable salt vulnerability exists that could allow the attacker to pre-compute the hash value using a dictionary attack, effectively disabling the protection that an unpredictable salt would provide.

Read more: Update to Recent Schneider Electric M221 PLC Vulnerabilities

Risk Information

  • CVE ID
  • CVE-2020-28214
  • Vendor
  • Schneider Electric
  • Product
  • Modicon M221
  • CVSS v3
  • 3.3