CVE-2023-5846 HIGH

CVE-2023-5846: Use of Password Hash With Insufficient Computational Effort in Franklin Fueling System TS-550

Vendor Franklin Fueling System
Product TS-550
Weakness CWE-916
Published November 2, 2023
Last update September 12, 2024

CVSS base score

8.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

What the vulnerability does

01Description

Franklin Fueling System TS-550 versions prior to 1.9.23.8960 are vulnerable to attackers decoding admin credentials, resulting in unauthenticated access to the device.

Key dates

02Disclosure timeline

November 2, 2023 CVE published
September 12, 2024 Record updated