CVE-2021-42699

AzeoTech DAQFactory

CVSS 5.7 MEDIUMEPSS 0.5%CWE-319

The affected product is vulnerable to cookie information being transmitted as cleartext over HTTP. An attacker can capture network traffic, obtain the user’s cookie and take over the account.

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

Affected products

AzeoTech · DAQFactory

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://us-cert.cisa.gov/ics/advisories/icsa-21-308-02