Static Key Encryption Vulnerability in Advantech SUISAccess Server

Static Key Encryption Vulnerability in Advantech SUISAccess Server

CVE-2016-9353 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

An issue was discovered in Advantech SUISAccess Server Version 3.0 and prior. The admin password is stored in the system and is encrypted with a static key hard-coded in the program. Attackers could reverse the admin account password for use.

Learn more about our Cis Benchmark Audit For Server Software.