Hard-coded Cryptographic Keys in Weidmueller Industrial WLAN Devices Enable Decryption of Network Traffic

Hard-coded Cryptographic Keys in Weidmueller Industrial WLAN Devices Enable Decryption of Network Traffic

CVE-2021-33529 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

In Weidmueller Industrial WLAN devices in multiple versions the usage of hard-coded cryptographic keys within the service agent binary allows for the decryption of captured traffic across the network from or to the device.

Learn more about our Industrial Pen Testing.