Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.3
CVSSv3

CVE-2016-8366

Published: 05/04/2018 Updated: 13/10/2018
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.3 | Impact Score: 3.4 | Exploitability Score: 3.9
VMScore: 505
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Phoenixcontact

Vulnerability Summary

Webvisit in Phoenix Contact ILC PLCs offers a password macro to protect HMI pages on the PLC against casual or coincidental opening of HMI pages by the user. The password macro can be configured in a way that the password is stored and transferred in clear text.

Vulnerable Product Search on Vulmon Subscribe to Product

phoenixcontact ilc_plcs_firmware -

Exploits

Exploit DB: Phoenix Contact WebVisit 6.40.00 - Password Disclosure
# Exploit Title: Phoenix Contact WebVisit 64000 - Password Disclosure # Exploit Author: Deneut Tijl # Date: 2018-09-30 # Vendor Homepage: wwwphoenixcontactcom # Software Link: wwwphoenixcontactcom/online/portal/nl/?uri=pxc-oc-itemdetail:pid=2985725&library=nlnl&pcck=P-19-05-01&tab=5 # Version: WebVisit < 64000 # CVE: ...
Exploit DB: Phoenix Contact WebVisit 6.40.00 Password Disclosure
Phoenix Contact WebVisit version 64000 suffers from a password disclosure vulnerability ...

References

CWE-255https://ics-cert.us-cert.gov/advisories/ICSA-313-01http://www.securityfocus.com/bid/94163https://www.exploit-db.com/exploits/45586/https://nvd.nist.govhttps://www.exploit-db.com/exploits/45586/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code executionCVE-2024-34909CVE-2024-3317SSTICVE-2024-3400CVE-2024-30051wirelessCVE-2024-4622CVE-2024-4908
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook