Lucene search
HistoryApr 03, 2015 - 10:59 a.m.
CVE-2015-0992
cve-2015-0992
inductive automation ignition
cleartext credentials
opc server
sensitive information disclosure
nvd
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
5.8 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
0.4%
Inductive Automation Ignition 7.7.2 stores cleartext OPC Server credentials, which allows local users to obtain sensitive information via unspecified vectors.
Affected configurations
Node
inductiveautomationignitionMatch7.7.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| inductiveautomation:ignition | inductiveautomation ignition | eq | 7.7.2 |
Related
cvelist
cvelist
CVE-2015-0992
2015-04-03 10:00:00
nvd
nvd
CVE-2015-0992
2015-04-03 10:59:14
prion
prion
Design/Logic Flaw
2015-04-03 10:59:00
kaspersky
kaspersky
KLA10535 Multiple vulnerabilities in Inductive Automation Ignition
2015-04-03 00:00:00
openvas
openvas
Inductive Automation Ignition < 7.7.4 Multiple Vulnerabilities
2015-04-11 00:00:00
nessus
nessus
Inductive Automation Ignition Multiple Vulnerabilities
2015-06-02 00:00:00
ics
ics
Inductive Automation Ignition Vulnerabilities
2018-08-27 12:00:00
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
5.8 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
0.4%
Related for CVE-2015-0992