A CWE-200: Information Exposure vulnerability exists in Modicon Controllers (M340 CPUs, M340 communication modules, Premium CPUs, Premium communication modules, Quantum CPUs, Quantum communication modules - see security notification for specific versions), which could cause the disclosure of FTP hardcoded credentials when using the Web server of the controller on an unsecure network.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
schneider-electric bmx_p34x_firmware |
||
schneider-electric bmx_noe_0100_firmware |
||
schneider-electric bmx_noe_0110_firmware |
||
schneider-electric bmx_noc_0401_firmware |
||
schneider-electric tsx_p57x_firmware |
||
schneider-electric tsx_ety_x103_firmware |
||
schneider-electric 140_cpu6x_firmware |
||
schneider-electric 140_noe_771x1_firmware |
||
schneider-electric 140_noc_78x00_firmware |
||
schneider-electric 140_noc_77101_firmware |