Primary

Context

STER Software Weak Password Encoding Vulnerability

Vulnerability

Patched

A vulnerability exists in STER software developed by the Central Institute of Labor Protection - National Research Institute, all versions prior to 9.5. The issue arises from the use of a weak password encoding algorithm, which allows the values of passwords to be guessed by analyzing the encoding of passwords with known values. This vulnerability could lead to unauthorized access to sensitive information.

Impact

Exploitation of this vulnerability could result in the unauthorized disclosure of password values, potentially leading to unauthorized access to user accounts or sensitive information.

Remediation

Users are advised to update to STER version 9.5 or later, where this vulnerability has been fixed.

Added: May 22, 2026, 10:19 AM

Updated: May 22, 2026, 10:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.6

remediation

0.0

relevance

9.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.6

remediation

0.0

relevance

9.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

STER Software Weak Password Encoding Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Centralny Instytut Ochrony Pracy - Państwowy Instytut Badawczy STER

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating