CWE-640: Weak Password Recovery Mechanism for Forgotten Password in PowerLogic PM55xx, PM8ECC, EGX100, and EGX300

CWE-640: Weak Password Recovery Mechanism for Forgotten Password in PowerLogic PM55xx, PM8ECC, EGX100, and EGX300

CVE-2021-22763 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

A CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability exists in PowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 and PowerLogic EGX300 (see security notification for version infromation) that could allow an attacker administrator level access to a device.

Learn more about our Web Application Penetration Testing UK.