How severe is CVE-2017-16731?

This vulnerability has a severity rating of HIGH with a CVSS score of 8.8 out of 10.

What type of vulnerability is CVE-2017-16731?

This is classified as CWE-523, which is a common weakness in software security.

CVE-2017-16731

HIGH Year: 2017

CVSS v3 Score

8.8

High

CVSS v2 Score

2.9

Low

Weakness Type

CWE-523

View all →

Vulnerability Description

An Unprotected Transport of Credentials issue was discovered in ABB Ellipse 8.3 through Ellipse 8.9 released prior to December 2017 (including Ellipse Select). A vulnerability exists in the authentication of Ellipse to LDAP/AD using the LDAP protocol. An attacker could exploit the vulnerability by sniffing local network traffic, allowing the discovery of authentication credentials.

CVE-2020-25175

CRITICAL

CVSS:9.8(Critical)

GE Healthcare Imaging and Ultrasound Products may allow specific credentials to be exposed during transport over the network.

CWE-5232020

CVE-2021-38460

HIGH

CVSS:7.5(High)

A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs o...

CWE-5232021

CVE-2022-31805

HIGH

CVSS:7.5(High)

In the CODESYS Development System multiple components in multiple versions transmit the passwords for the communication between clients and servers unprotected.

CWE-5232022

CVE-2023-22862

HIGH

CVSS:7.5(High)

IBM Aspera Connect 4.2.5 and IBM Aspera Cargo 4.2.5 transmits authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

CWE-5232023