Description
The Blink1Control2 application <= 2.2.7 uses weak password encryption and an insecure method of storage.
Remediation
References
http://packetstormsecurity.com/files/168428/Blink1Control2-2.2.7-Weak-Password-Encryption.html
https://github.com/p1ckzi/CVE-2022-35513
https://github.com/todbot/Blink1Control2/releases
Related Vulnerabilities
CVE-2023-37903 Vulnerability in maven package org.webjars.npm:vm2
CVE-2015-6584 Vulnerability in maven package org.webjars.npm:datatables
CVE-2019-10793 Vulnerability in maven package org.webjars.bower:dot-object
CVE-2021-21297 Vulnerability in npm package @node-red/editor-api
CVE-2021-43090 Vulnerability in maven package com.predic8:soa-model-parent