CVE-2022-0183

EUVD-2022-15387
Missing encryption of sensitive data vulnerability in 'MIRUPASS' PW10 firmware all versions and 'MIRUPASS' PW20 firmware all versions allows an attacker who can physically access the device to obtain the stored passwords.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.6 MEDIUM
PHYSICAL
LOW
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 3%
Affected Products (NVD)
VendorProductVersion
kingjimmirupass_pw10_firmware
-
kingjimmirupass_pw20_firmware
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://jvn.jp/en/jp/JVN19826500/index.html
https://www.kingjim.co.jp/download/security/#mirupass
https://jvn.jp/en/jp/JVN19826500/index.html
https://www.kingjim.co.jp/download/security/#mirupass