VYPR
Unrated severityNVD Advisory· Published Mar 10, 2020· Updated Aug 4, 2024

CVE-2019-5106

CVE-2019-5106

Description

A hard-coded encryption key vulnerability exists in the authentication functionality of WAGO e!Cockpit version 1.5.1.1. An attacker with access to communications between e!Cockpit and CoDeSyS Gateway can trivially recover the password of any user attempting to log in, in plain text.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Agentejo/Cockpitllm-fuzzy
    Range: = 1.5.1.1
  • Wago/WAGO e!Cockpitv5
    Range: 1.5.1.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.