CVE-2021-23855 - Bosch Rexroth Indramotion Mlc Firmware and Bosch Rexroth Indramotion Xlc Firmware

Critical 7.5

The user and password data base is exposed by an unprotected web server resource. Passwords are hashed with a weak hashing algorithm and therefore allow an attacker to determine the password by using rainbow tables.

Affected software

Bosch Rexroth Indramotion Mlc Firmware

Bosch Rexroth Indramotion Xlc Firmware

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.