PT-2015-7665 · Honeywell · Honeywell Midas Black Gas Detectors+1

Published

2015-12-21

Updated

2015-12-21

CVE-2015-7908

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Honeywell Midas gas detectors versions prior to 1.13b3 Honeywell Midas Black gas detectors versions prior to 2.13b3

Description The issue allows remote attackers to discover cleartext passwords by sniffing the network.

Recommendations For Honeywell Midas gas detectors versions prior to 1.13b3, update to version 1.13b3 or later. For Honeywell Midas Black gas detectors versions prior to 2.13b3, update to version 2.13b3 or later.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2015-7908

Affected Products

Honeywell Midas Black Gas Detectors

Honeywell Midas Gas Detectors

PT-2015-7665 · Honeywell · Honeywell Midas Black Gas Detectors+1

CVE-2015-7908

Weakness Enumeration

Related Identifiers

Affected Products

References · 2