CVE-2016-5818

Опубликовано: 13 фев. 2017

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

An issue was discovered in Schneider Electric PowerLogic PM8ECC device 2.651 and older. Undocumented hard-coded credentials allow access to the device.

Ссылки

http://www.securityfocus.com/bid/93602
Third Party Advisory
VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-16-292-01
Patch
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/93602
Third Party Advisory
VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-16-292-01
Patch
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:schneider-electric:powerlogic_pm8ecc_firmware:2.651:*:*:*:*:*:*:*

cpe:2.3:h:schneider-electric:powerlogic_pm8ecc:-:*:*:*:*:*:*:*

EPSS

Процентиль: 59%

0.00378

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-798

Связанные уязвимости

GHSA-h379-q7pp-897w