cvedb.io
CVE-2023-0451
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2023-01-26T21:18:08.673 · Last modified 2026-06-17T05:25:34.680

Summary

Econolite EOS versions prior to 3.2.23 lack a password requirement for gaining “READONLY” access to log files and certain database and configuration files. One such file contains tables with MD5 hashes and usernames for all defined users in the control software, including administrators and technicians.

Affected products

econolite — eos

Does this affect you?

Add your gear to cvedb and we'll alert you only when econolite ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.