Vulnerability in Wellintech Kingview

CVE-2012-4899

WellinTech KingView 6.5.3 and earlier uses a weak password-hashing algorithm, which makes it easier for local users to discover credentials by reading an unspecified file.

Vulnerability class: POODLE (CVE-2014-3566)

EPSS: 0.001 (19.6th percentile) — read the EPSS interpretation.

Affected products

Wellintech Kingview — versions 3.0, 6.5.30.2010.18018, 6.52
N/a — versions n/a

Weakness classification (CWE)

CWE-310 — Cryptographic Issues

References

cve@mitre.org (Patch, x_refsource_MISC, Vendor Advisory)
cve@mitre.org (US Government Resource, x_refsource_MISC)