CVE-2015-0999

2015-03-29T10:59:00
ID CVE-2015-0999
Type cve
Reporter cve@mitre.org
Modified 2018-10-30T16:28:00

Description

Schneider Electric InduSoft Web Studio before 7.1.3.4 SP3 Patch 4 and InTouch Machine Edition 2014 before 7.1.3.4 SP3 Patch 4 store cleartext OPC User credentials in a configuration file, which allows local users to obtain sensitive information by reading this file.