Insecure Storage of Login Credentials in Atlas Copco Power Focus 6000 Web Server

Insecure Storage of Login Credentials in Atlas Copco Power Focus 6000 Web Server

CVE-2023-1897 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Atlas Copco Power Focus 6000 web server does not sanitize the login information stored by the authenticated user’s browser, which could allow an attacker with access to the user’s computer to gain credential information of the controller.

Learn more about our Web App Pen Testing.