PT-2020-14629 · Siemens · Spectrum Power 4

Published

2020-09-09

Updated

2020-09-14

CVE-2020-15784

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Spectrum Power 4 versions prior to V4.70 SP8

Description A security issue has been identified where sensitive information is stored insecurely in configuration files, potentially allowing the retrieval of user names.

Recommendations For versions prior to V4.70 SP8, update to version V4.70 SP8 or later to resolve the issue.

Fix

Cleartext Storage of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-312

Related Identifiers

CVE-2020-15784

Affected Products

Spectrum Power 4

PT-2020-14629 · Siemens · Spectrum Power 4

CVE-2020-15784

Weakness Enumeration

Related Identifiers

Affected Products

References · 3