CVE-2022-2485 – AutomationDirect Stride Field I/O Cleartext Transmission of Sensitive Information

https://notcve.org/view.php?id=CVE-2022-2485

Any attempt (good or bad) to log into AutomationDirect Stride Field I/O with a web browser may result in the device responding with its password in the communication packets. Cualquier intento (bueno o malo) de iniciar sesión en AutomationDirect Stride Field I/O con un navegador web puede hacer que el dispositivo responda con su contraseña en los paquetes de comunicación • https://cdn.automationdirect.com/static/firmware/product_advisory/PA-COM-006.pdf https://www.cisa.gov/uscert/ics/advisories/icsa-22-202-05 • CWE-319: Cleartext Transmission of Sensitive Information •