ClearText Transmission of Sensitive Information in LS ELECTRIC XBC-DN32U

CVE-2023-22806 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

LS ELECTRIC XBC-DN32U with operating system version 01.80 transmits sensitive information in cleartext when communicating over its XGT protocol. This could allow an attacker to gain sensitive information such as user credentials.

Learn more about our User Device Pen Test.