Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A CWE-798: Use of Hard-coded Credentials vulnerability exists that could result in information disclosure. If an attacker were to obtain the SSH cryptographic key for the device and take active control of the local operational network connected to the product they could potentially observe and manipulate traffic associated with product configuration. Affected Product: Easergy P5 (All firmware versions prior to V01.401.101)
CVSS Information
N/A
Vulnerability Type
使用硬编码的凭证
Vulnerability Title
Schneider Electric Easergy P5 信任管理问题漏洞
Vulnerability Description
Schneider Electric Easergy P5是法国施耐德电气(Schneider Electric)公司的一款适用于要求苛刻的中压应用的保护继电器。 Schneider Electric Easergy P5存在信任管理问题漏洞,该漏洞的存在是由于应用程序代码中存在硬编码凭证。本地网络上未经身份验证的远程攻击者可利用该漏洞可以使用硬编码的凭证访问受影响的系统。该漏洞允许远程攻击者可利用该漏洞获得对脆弱系统的完全访问权。
CVSS Information
N/A
Vulnerability Type
N/A