Name of the Vulnerable Software and Affected Versions АРМ Релейщика (affected versions not specified) Сервер связи ПЛК ЭКРА (affected versions not specified)

Description The issue is related to a predefined password for the database containing user accounts in the interaction protocol between АРМ Релейщика software and Сервер связи ПЛК ЭКРА software. This could allow an attacker to gain access to user registration data.

Recommendations For АРМ Релейщика, consider changing the predefined password for the database to a unique and secure password. For Сервер связи ПЛК ЭКРА, restrict access to the database containing user accounts until a secure password is implemented. As a temporary workaround, consider disabling access to the database until a secure solution is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.