Cleartext Transmission Vulnerability in Baker Hughes – Bently Nevada 3500 System TDI Firmware version 5.05

Cleartext Transmission Vulnerability in Baker Hughes – Bently Nevada 3500 System TDI Firmware version 5.05

CVE-2023-34441 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

Baker Hughes – Bently Nevada 3500 System TDI Firmware version 5.05 contains a cleartext transmission vulnerability which could allow an attacker to steal the authentication secret from communication traffic to the device and reuse it for arbitrary requests.

Learn more about our Web Application Penetration Testing UK.