Lucene search
HistoryDec 21, 2015 - 11:59 a.m.
CVE-2015-7908
honeywell
midas
gas detectors
cleartext passwords
remote attackers
network sniffing
cve-2015-7908
nvd
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
6.9 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
75.2%
Honeywell Midas gas detectors before 1.13b3 and Midas Black gas detectors before 2.13b3 allow remote attackers to discover cleartext passwords by sniffing the network.
Affected configurations
Node
honeywellmidas_firmwareRange≤1.13b1
honeywellmidasMatch-
Node
honeywellmidas_black_firmwareRange≤2.13b1
honeywellmidas_blackMatch-
| CPE | Name | Operator | Version |
|---|---|---|---|
| honeywell:midas_firmware | honeywell midas firmware | le | 1.13b1 |
Related
prion
prion
Code injection
2015-12-21 11:59:00
nvd
nvd
CVE-2015-7908
2015-12-21 11:59:10
cvelist
cvelist
CVE-2015-7908
2015-12-21 11:00:00
ics
ics
Honeywell Midas Gas Detector Vulnerabilities
2018-08-27 12:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
6.9 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
75.2%
Related for CVE-2015-7908