1 results (0.015 seconds)
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2015-3962
https://notcve.org/view.php?id=CVE-2015-3962
Schneider Electric StruxureWare Building Expert MPM before 2.15 does not use encryption for the client-server data stream, which allows remote attackers to discover credentials by sniffing the network. Vulnerabilidad en Schneider Electric StruxureWare Building Expert MPM en versiones anteriores a 2.15, no usa el cifrado para el flujo de datos cliente-servidor, lo que permite a atacantes remotos descubrir las credenciales rastreando la red. • http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2015-254-01 https://ics-cert.us-cert.gov/advisories/ICSA-15-258-01 • CWE-522: Insufficiently Protected Credentials •