CVE-2014-9199

Clorius Controls A/S ISC SCADA Insecure Java Client Inadequate Encryption Strength

CVSS 10 EPSS 2.6%CWE-326

The Clorius Controls Java web client before 01.00.0009g allows remote attackers to discover credentials by sniffing the network for cleartext-equivalent traffic.

AV:N/AC:L/Au:N/C:C/I:C/A:C

Produtos afetados

Clorius Controls · A/S Java web client

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://ics-cert.us-cert.gov/advisories/ICSA-15-013-02 https://www.cisa.gov/news-events/ics-advisories/icsa-15-013-02 http://www.cloriuscontrols.com