VYPR
Unrated severityNVD Advisory· Published Jul 31, 2012· Updated Jun 16, 2026

CVE-2012-3018

CVE-2012-3018

Description

The lockout-recovery feature in the Security Configurator component in ICONICS GENESIS32 9.22 and earlier and BizViz 9.22 and earlier uses an improper encryption algorithm for generation of an authentication code, which allows local users to bypass intended access restrictions and obtain administrative access by predicting a challenge response.

Affected products

20
  • Iconics/Bizviz10 versions
    cpe:2.3:a:iconics:bizviz:*:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:iconics:bizviz:*:*:*:*:*:*:*:*range: <=9.22
    • cpe:2.3:a:iconics:bizviz:8.05:*:*:*:*:*:*:*
    • cpe:2.3:a:iconics:bizviz:9.0:*:*:*:*:*:*:*
    • cpe:2.3:a:iconics:bizviz:9.01:*:*:*:*:*:*:*
    • cpe:2.3:a:iconics:bizviz:9.1:*:*:*:*:*:*:*
    • cpe:2.3:a:iconics:bizviz:9.13:*:*:*:*:*:*:*
    • cpe:2.3:a:iconics:bizviz:9.2:*:*:*:*:*:*:*
    • cpe:2.3:a:iconics:bizviz:9.20:*:*:*:*:*:*:*
    • cpe:2.3:a:iconics:bizviz:9.21:*:*:*:*:*:*:*
    • (no CPE)range: <=9.22
  • Iconics/Genesis3210 versions
    cpe:2.3:a:iconics:genesis32:*:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:iconics:genesis32:*:*:*:*:*:*:*:*range: <=9.22
    • cpe:2.3:a:iconics:genesis32:8.05:*:*:*:*:*:*:*
    • cpe:2.3:a:iconics:genesis32:9.0:*:*:*:*:*:*:*
    • cpe:2.3:a:iconics:genesis32:9.01:*:*:*:*:*:*:*
    • cpe:2.3:a:iconics:genesis32:9.1:*:*:*:*:*:*:*
    • cpe:2.3:a:iconics:genesis32:9.13:*:*:*:*:*:*:*
    • cpe:2.3:a:iconics:genesis32:9.2:*:*:*:*:*:*:*
    • cpe:2.3:a:iconics:genesis32:9.20:*:*:*:*:*:*:*
    • cpe:2.3:a:iconics:genesis32:9.21:*:*:*:*:*:*:*
    • (no CPE)range: <=9.22

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.