Vulnerability in Iconics Bizviz

CVE-2012-3018

The lockout-recovery feature in the Security Configurator component in ICONICS GENESIS32 9.22 and earlier and BizViz 9.22 and earlier uses an improper encryption algorithm for generation of an authentication code, which allows local users…

Vulnerability class: POODLE (CVE-2014-3566)

EPSS: 0.000 (9.2th percentile) — read the EPSS interpretation.

Affected products

Iconics Bizviz — versions 8.05, 9.0, 9.01
Iconics Genesis32 — versions 8.05, 9.0, 9.1
N/a — versions n/a

Weakness classification (CWE)

CWE-310 — Cryptographic Issues

References

ics-cert@hq.dhs.gov (US Government Resource, x_refsource_MISC)