PT-2019-14758 · Weidmueller · Weidmueller Ie-Sw-Vl05M+2

Published

2019-12-06

Updated

2019-12-10

CVE-2019-16673

CVSS v3.1

7.5

High

Vector

AC:L/AV:N/A:N/C:H/I:N/PR:N/S:U/UI:N

Name of the Vulnerable Software and Affected Versions Weidmueller IE-SW-VL05M version 3.6.6 Build 16102415 Weidmueller IE-SW-VL08MT version 3.5.2 Build 16102415 Weidmueller IE-SW-PL10M version 3.3.16 Build 16102416

Description The issue concerns the storage of passwords in cleartext, allowing anyone with access to the device to read them.

Recommendations For Weidmueller IE-SW-VL05M version 3.6.6 Build 16102415, consider changing the password storage mechanism to a more secure method. For Weidmueller IE-SW-VL08MT version 3.5.2 Build 16102415, consider changing the password storage mechanism to a more secure method. For Weidmueller IE-SW-PL10M version 3.3.16 Build 16102416, consider changing the password storage mechanism to a more secure method.

Fix

Insufficiently Protected Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-522

Related Identifiers

CVE-2019-16673

Affected Products

Weidmueller Ie-Sw-Pl10M

Weidmueller Ie-Sw-Vl05M

Weidmueller Ie-Sw-Vl08Mt

PT-2019-14758 · Weidmueller · Weidmueller Ie-Sw-Vl05M+2

CVE-2019-16673

Weakness Enumeration

Related Identifiers

Affected Products

References · 6