CVE-2017-14026

In Ice Qube Thermal Management Center versions prior to version 4.13, the web application does not properly authenticate users which may allow an attacker to gain access to sensitive information.
References
Link Resource
http://www.securityfocus.com/bid/105303 Third Party Advisory VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-18-249-01 Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/105303 Third Party Advisory VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-18-249-01 Third Party Advisory US Government Resource
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:iceqube:thermal_management_center_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iceqube:thermal_management_center:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:11

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/105303 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/105303 - Third Party Advisory, VDB Entry
References () https://ics-cert.us-cert.gov/advisories/ICSA-18-249-01 - Third Party Advisory, US Government Resource () https://ics-cert.us-cert.gov/advisories/ICSA-18-249-01 - Third Party Advisory, US Government Resource

Information

Published : 2018-09-06 19:29

Updated : 2024-11-21 03:11


NVD link : CVE-2017-14026

Mitre link : CVE-2017-14026

CVE.ORG link : CVE-2017-14026


JSON object : View

Products Affected

iceqube

  • thermal_management_center_firmware
  • thermal_management_center
CWE
CWE-287

Improper Authentication