CVE-2017-6028
Last modified
CVE-2017-6028 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. An Insufficiently Protected Credentials issue was discovered in Schneider Electric Modicon PLCs Modicon M241, all firmware versions, and Modicon M251, all firmware versions. Log-in credentials are sent over the network with Base64 encoding leaving them susceptible to sniffing. EPSS estimates a 2.25% chance of exploitation in the next 30 days.
Description
An Insufficiently Protected Credentials issue was discovered in Schneider Electric Modicon PLCs Modicon M241, all firmware versions, and Modicon M251, all firmware versions. Log-in credentials are sent over the network with Base64 encoding leaving them susceptible to sniffing. Sniffed credentials could then be used to log into the web application.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Schneider-Electric | Modicon M241 Firmware | <= 4.0.3.20 |
| Schneider-Electric | Modicon M251 Firmware | <= 4.0.3.20 |
References
- http://www.securityfocus.com/bid/97254Third Party Advisory, VDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-17-089-02Third Party Advisory, US Government Resource
- http://www.securityfocus.com/bid/97254Third Party Advisory, VDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-17-089-02Third Party Advisory, US Government Resource
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-6028?
How severe is CVE-2017-6028?
How do I fix CVE-2017-6028?
Are you affected by CVE-2017-6028?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST