How severe is CVE-2023-43776?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.6 out of 10.

What type of vulnerability is CVE-2023-43776?

This is classified as CWE-261, which is a common weakness in software security.

CVE-2023-43776

MEDIUM Year: 2023

CVSS v3 Score

6.6

Medium

Weakness Type

CWE-261

View all →

Vulnerability Description

Eaton easyE4 PLC offers a device password protection functionality to facilitate a secure connection and prevent unauthorized access. It was observed that the device password was stored with a weak encoding algorithm in the easyE4 program file when exported to SD card (*.PRG file ending).

CVE-2024-0556

MEDIUM

CVSS:6.5(Medium)

A Weak Cryptography for Passwords vulnerability has been detected on WIC200 affecting version 1.1. This vulnerability allows a remote user to intercept the traffic and retrieve the credentials from an...

CWE-2612024

CVE-2025-26401

MEDIUM

CVSS:6.5(Medium)

Weak encoding for password vulnerability exists in HMI ViewJet C-more series. If this vulnerability is exploited, authentication information may be obtained by a local authenticated attacker.

CWE-2612025

CVE-2020-10919

MEDIUM

CVSS:5.9(Medium)

This vulnerability allows remote attackers to disclose sensitive information on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to ex...

CWE-2612020

CVE-2024-8455

MEDIUM

CVSS:5.9(Medium)

The swctrl service is used to detect and remotely manage PLANET Technology devices. For certain switch models, the authentication tokens used during communication with this service are encoded user pa...

CWE-2612024