Lucene search
HistoryOct 25, 2015 - 2:59 a.m.
CVE-2015-1005
ininet
ewebserver
windows ce
password storage
cleartext
cve-2015-1005
nvd
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
6.4 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
29.2%
IniNet embeddedWebServer (aka eWebServer) before 2.02 for Windows CE uses cleartext for password storage, which allows context-dependent attackers to obtain sensitive information via unspecified vectors.
Affected configurations
Node
ininet_solutionsscada_web_serverMatch-
| CPE | Name | Operator | Version |
|---|---|---|---|
| ininet_solutions:scada_web_server | ininet solutions scada web server | eq | - |
Related
prion
prion
Default credentials
2015-10-25 02:59:00
nvd
nvd
CVE-2015-1005
2015-10-25 02:59:03
ics
ics
IniNet Solutions embeddedWebServer Cleartext Storage Vulnerability
2018-08-27 12:00:00
cvelist
cvelist
CVE-2015-1005
2015-10-25 01:00:00
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
6.4 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
29.2%
Related for CVE-2015-1005