PT-2024-2711 · Automationdirect · C-More Ea9 Hmi
Tomer Goldschmidt
·
Published
2024-03-26
·
Updated
2024-03-27
·
CVE-2024-25138
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:L/Au:S/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
AutomationDirect C-MORE EA9 HMI (affected versions not specified)
Description
The issue is related to the storage of critical information in plain text, which could allow an attacker to gain unauthorized access to protected information. Credentials used by the platform are stored as plain text on the device.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
C-More Ea9 Hmi