CVE-2015-7908
Severity Score
9.3
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Honeywell Midas gas detectors before 1.13b3 and Midas Black gas detectors before 2.13b3 allow remote attackers to discover cleartext passwords by sniffing the network.
Detectores de gas Honeywell Midas en versiones anteriores a 1.13b3 y detectores de gas Midas Black en versiones anteriores a 2.13b3 permiten a atacantes remotos descubrir contraseñas en texto plano rastreando la red.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2015-10-22 CVE Reserved
- 2015-12-21 CVE Published
- 2023-10-13 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CAPEC
References (1)
| URL | Tag | Source |
|---|---|---|
| https://ics-cert.us-cert.gov/advisories/ICSA-15-309-02 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Honeywell Search vendor "Honeywell" | Midas Firmware Search vendor "Honeywell" for product "Midas Firmware" | <= 1.13b1 Search vendor "Honeywell" for product "Midas Firmware" and version " <= 1.13b1" | - |
Affected
| in | Honeywell Search vendor "Honeywell" | Midas Search vendor "Honeywell" for product "Midas" | - | - |
Safe
|
| Honeywell Search vendor "Honeywell" | Midas Black Firmware Search vendor "Honeywell" for product "Midas Black Firmware" | <= 2.13b1 Search vendor "Honeywell" for product "Midas Black Firmware" and version " <= 2.13b1" | - |
Affected
| in | Honeywell Search vendor "Honeywell" | Midas Black Search vendor "Honeywell" for product "Midas Black" | - | - |
Safe
|