The FTP server in Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV before 4.05.000, PFXEXEDLS before 4.05.000, and PFXEXGRPLS before 4.05.000 has hardcoded credentials, which makes it easier for remote attackers to bypass authentication by leveraging knowledge of these credentials.
References
Link | Resource |
---|---|
https://ics-cert.us-cert.gov/advisories/ICSA-16-096-01 | Third Party Advisory US Government Resource |
https://ics-cert.us-cert.gov/advisories/ICSA-16-096-01 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:37
Type | Values Removed | Values Added |
---|---|---|
References | () https://ics-cert.us-cert.gov/advisories/ICSA-16-096-01 - Third Party Advisory, US Government Resource |
Information
Published : 2016-04-06 23:59
Updated : 2024-11-21 02:37
NVD link : CVE-2015-7921
Mitre link : CVE-2015-7921
CVE.ORG link : CVE-2015-7921
JSON object : View
Products Affected
schneider-electric
- proface_gp-pro_ex_pfxexgrpls
- proface_gp-pro_ex_pfxexedls
- proface_gp-pro_ex_ex-ed
- proface_gp-pro_ex_pfxexedv
CWE
CWE-255
Credentials Management Errors