CVE-2021-38461

The affected product uses a hard-coded blowfish key for encryption/decryption processes. The key can be easily extracted from binaries.

• https://us-cert.cisa.gov/ics/advisories/icsa-21-292-01
  PatchThird Party AdvisoryUS Government Resource
• https://us-cert.cisa.gov/ics/advisories/icsa-21-292-01
  PatchThird Party AdvisoryUS Government Resource