Emerson OpenBSI 5.9 Service Pack 1
Approved changes feed: RSS · Atom
cpe:2.3:a:emerson:openbsi:5.9:sp1:*:*:*:*:*:*
part: a version: 5.9 update: sp1
| Vendor | Emerson (f912a02b-4be0-550b-a08d-4ea8860069db) |
|---|---|
| Product | Openbsi (b23db73f-bc0e-5d43-bbc0-8eb24fff0999) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2022-29960 |
vulnerable | 2026-06-03 14:46:59.893951 |
Details available
Emerson OpenBSI through 2022-04-29 uses weak cryptography. It is an engineering environment for the ControlWave and Bristol Babcock line of RTUs. DES with hardcoded cryptographic keys is used for protection of certain system credentials, engineering files, and sensitive utilities.
Published: 2022-07-26T21:14:45.000Z
Updated: 2024-08-03T06:33:43.323Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-29959 |
vulnerable | 2026-06-03 14:46:59.892480 |
Details available
Emerson OpenBSI through 2022-04-29 mishandles credential storage. It is an engineering environment for the ControlWave and Bristol Babcock line of RTUs. This environment provides access control functionality through user authentication and privilege management. The credentials for various users are stored insecurely in the SecUsers.ini file by using a simple string transformation rather than a cryptographic mechanism.
Published: 2022-08-16T12:23:42.000Z
Updated: 2024-08-03T06:33:43.165Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.