An information disclosure vulnerability exists in the User authentication functionality of WellinTech KingHistorian 35.01.00.05. A specially crafted network packet can lead to a disclosure of sensitive information. An attacker can sniff network traffic to leverage this vulnerability.
https://www.talosintelligence.com/vulnerability_reports/TALOS-2022-1683
https://talosintelligence.com/vulnerability_reports/TALOS-2022-1683