Описание
CWE-287: Improper Authentication vulnerability exists that could cause an Authentication Bypass when an unauthorized user without permission rights has physical access to the EPAS-UI computer and is able to reboot the workstation and interrupt the normal boot process.
EPSS
6.8 Medium
CVSS3
Дефекты
Связанные уязвимости
CWE-287: Improper Authentication vulnerability exists that could cause an Authentication Bypass when an unauthorized user without permission rights has physical access to the EPAS-UI computer and is able to reboot the workstation and interrupt the normal boot process.
Уязвимость HMI SCADA-системы автоматизации электроснабжения EcoStruxure Power Automation System User Interface (EPAS-UI), связанная с недостатками процедуры аутентификации, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
EPSS
6.8 Medium
CVSS3