CVE-2019-17216
CRITICALV-Zug Combi-Steam MSLQ <Ethernet R07 & WLAN R05 - Info Disclosure
Title source: llmDescription
An issue was discovered on V-Zug Combi-Steam MSLQ devices before Ethernet R07 and before WLAN R05. Password authentication uses MD5 to hash passwords. Cracking is possible with minimal effort.
References (1)
Core 1
Core References
Permissions Required, Third Party Advisory x_refsource_misc
https://vuldb.com/?id.134117
Scores
CVSS v3
9.8
EPSS
0.0075
EPSS Percentile
49.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-916
Status
published
Products (1)
vzug/combi-stream_mslq_firmware
< ethernet_r07
Published
Oct 06, 2019
Tracked Since
Feb 18, 2026