Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An Insufficiently Protected Credentials issue was discovered in Schneider Electric Modicon PLCs Modicon M241, all firmware versions, and Modicon M251, all firmware versions. Log-in credentials are sent over the network with Base64 encoding leaving them susceptible to sniffing. Sniffed credentials could then be used to log into the web application.
CVSS Information
N/A
Vulnerability Type
不充分的凭证保护机制
Vulnerability Title
Schneider Electric Modicon PLCs Modicon M241和Modicon M251 信任管理问题漏洞
Vulnerability Description
Schneider Electric Modicon PLCs Modicon M241和Modicon M251都是法国施耐德电气(Schneider Electric)公司的可编程控制器。 Schneider Electric Modicon PLCs Modicon M241和Modicon M251中存在信任管理问题漏洞,该漏洞源于程序没有充分的保护证书。攻击者可通过嗅探已登录的证书利用该漏洞登录到Web应用程序上。
CVSS Information
N/A
Vulnerability Type
N/A