A CWE-798: Use of Hardcoded Credentials vulnerability exists in Modicon Controllers (All versions of the following CPUs and Communication Module product references listed in the Security Notifications), which could cause the disclosure of FTP hardcoded credentials when using the Web server of the controller on an unsecure network.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
schneider-electric bmx_p34x_firmware |
||
schneider-electric bmx_noe_0100_firmware |
||
schneider-electric bmx_noe_0110_firmware |
||
schneider-electric bmx_noc_0401_firmware |
||
schneider-electric tsx_p57x_firmware |
||
schneider-electric tsx_ety_x103_firmware |
||
schneider-electric 140_cpu6x_firmware |
||
schneider-electric 140_noe_771x1_firmware |
||
schneider-electric 140_noc_78x00_firmware |
||
schneider-electric 140_noc_77101_firmware |