{"uuid": "3f4193da-12e8-4dcb-ac88-44316c398fbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-22334", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/10256", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-22334\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Use of password hash instead of password for authentication vulnerability in CONPROSYS HMI System (CHS) Ver.3.4.5 and earlier allows a remote authenticated attacker to obtain user credentials information via a man-in-the-middle attack.\n\ud83d\udccf Published: 2023-01-20T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-03T15:18:44.743Z\n\ud83d\udd17 References:\n1. https://www.contec.com/download/contract/contract4/?itemid=ea8039aa-3434-4999-9ab6-897aa690210c&downloaditemid=866d7d3c-aae9-438d-87f3-17aa040df90b\n2. https://www.contec.com/api/downloadlogger?download=/-/media/Contec/jp/support/security-info/contec_security_chs_230110_en.pdf\n3. https://jvn.jp/en/vu/JVNVU96873821\n4. https://www.cisa.gov/uscert/ics/advisories/icsa-22-347-03", "creation_timestamp": "2025-04-03T15:35:13.000000Z"}