CVE-2015-7911

Name of the Vulnerable Software and Affected Versions Saia Burgess PCD1.M0xx0 versions prior to 1.24.50 Saia Burgess PCD1.M2xx0 versions prior to 1.24.50 Saia Burgess PCD2.M5xx0 versions prior to 1.24.50 Saia Burgess PCD3.Mxx60 versions prior to 1.24.50 Saia Burgess PCD3.Mxxx0 versions prior to 1.24.50 Saia Burgess PCD7.D4xxD versions prior to 1.24.50 Saia Burgess PCD7.D4xxV versions prior to 1.24.50 Saia Burgess PCD7.D4xxWTPF versions prior to 1.24.50 Saia Burgess PCD7.D4xxxT5F versions prior to 1.24.50 Saia Burgess PCD3.T665 versions prior to 1.24.41 Saia Burgess PCD3.T666 versions prior to 1.24.41

Description The issue is caused by hardcoded credentials in the software, allowing remote attackers to obtain administrative access via an FTP session. This can be exploited by attackers to gain unauthorized access to the system.

Recommendations For Saia Burgess PCD1.M0xx0 versions prior to 1.24.50, update to version 1.24.50 or later. For Saia Burgess PCD1.M2xx0 versions prior to 1.24.50, update to version 1.24.50 or later. For Saia Burgess PCD2.M5xx0 versions prior to 1.24.50, update to version 1.24.50 or later. For Saia Burgess PCD3.Mxx60 versions prior to 1.24.50, update to version 1.24.50 or later. For Saia Burgess PCD3.Mxxx0 versions prior to 1.24.50, update to version 1.24.50 or later. For Saia Burgess PCD7.D4xxD versions prior to 1.24.50, update to version 1.24.50 or later. For Saia Burgess PCD7.D4xxV versions prior to 1.24.50, update to version 1.24.50 or later. For Saia Burgess PCD7.D4xxWTPF versions prior to 1.24.50, update to version 1.24.50 or later. For Saia Burgess PCD7.D4xxxT5F versions prior to 1.24.50, update to version 1.24.50 or later. For Saia Burgess PCD3.T665 versions prior to 1.24.41, update to version 1.24.41 or later. For Saia Burgess PCD3.T666 versions prior to 1.24.41, update to version 1.24.41 or later.