CVE-2020-28214
USE OF A ONE-WAY HASH WITH A PREDICTABLE SALT CWE-760
A use of a one-way hash with a predictable salt vulnerability exists that could allow the attacker to pre-compute the hash value using a dictionary attack, effectively disabling the protection that an unpredictable salt would provide.
Read more: Update to Recent Schneider Electric M221 PLC Vulnerabilities
Risk Information
- CVE ID
- CVE-2020-28214
- Vendor
- Schneider Electric
- Product
- Modicon M221
- CVSS v3
- 3.3