CWE-798: Use of hard-coded credentials vulnerability exists that could cause local privilege
escalation when logged in as a non-administrative user.
References
Configurations
History
21 Nov 2024, 08:47
Type | Values Removed | Values Added |
---|---|---|
References | () https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-044-03&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2024-044-03.pdf - Vendor Advisory |
19 Jul 2024, 20:43
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:schneider-electric:ecostruxure_it_gateway:*:*:*:*:*:*:*:* | |
First Time |
Schneider-electric
Schneider-electric ecostruxure It Gateway |
|
References | () https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-044-03&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2024-044-03.pdf - Vendor Advisory |
13 Jun 2024, 18:36
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
12 Jun 2024, 18:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-06-12 18:15
Updated : 2024-11-21 08:47
NVD link : CVE-2024-0865
Mitre link : CVE-2024-0865
CVE.ORG link : CVE-2024-0865
JSON object : View
Products Affected
schneider-electric
- ecostruxure_it_gateway
CWE
CWE-798
Use of Hard-coded Credentials