1. EXECUTIVE SUMMARY
- CVSS v3 6.8
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Johnson Controls, Inc.
- Equipment: Illustra Essentials Gen 4
- Vulnerability: Storing Passwords in a Recoverable Format
2. RISK EVALUATION
Successful exploitation of this vulnerability may allow web interface user’s credentials to be recovered by an authenticated user.
3. TECHNICAL DETAILS
3.1 AFFECTED PRODUCTS
Johnson Controls reports that the following versions of Illustra Essentials IP cameras are affected:
- Illustra Essential Gen 4: versions Illustra.Ess4.01.02.10.5982 and prior
3.2 Vulnerability Overview
3.2.1 Storing Passwords in a Recoverable Format CWE-257
Under certain circumstances, the web interface users credentials may be recovered by an authenticated user.
CVE-2024-32932 has been assigned to this vulnerability. A CVSS v3.1 base score of 6.8 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N).
3.3 BACKGROUND
- CRITICAL INFRASTRUCTURE SECTORS: Critical Manufacturing, Commercial Facilities, Government Facilities, Transportation Systems, Energy
- COUNTRIES/AREAS DEPLOYED: Worldwide
- COMPANY HEADQUARTERS LOCATION: Ireland
3.4 RESEARCHER
Sam Hanson of Dragos reported this vulnerability to Johnson Controls, Inc.
4. MITIGATIONS
Johnson Controls recommends that users upgrade cameras to Illustra.Ess4.01.02.13.6953.
For more detailed mitigation instructions, please see Johnson Controls Product Security Advisory JC
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
Read the original article: