Marel Food Processing Systems

🗓️ 04 Apr 2017 00:00:00Reported by Industrial Control Systems Cyber Emergency Response TeamType

ics

ics🔗 ics-cert.us-cert.gov👁 285 Views

Marel Food Processing Systems affected by hard-coded passwords and unrestricted upload vulnerabilities. Remote attacker may gain unauthorized administrative access

Reporter	Title	Published	Views	Family All 15
BDU FSTEC	The vulnerabilities of the M3000 Terminal and M3210 Terminal authentication services, the M3000 Desktop software, the MAC4 Controller, the SensorX23 X-ray Machine and SensorX25 X-ray Machine, the MWS2 Weighing System – these all allow a intruder to gain unauthorized access to the administrators’ control over the respective devices.	22 Sep 201700:00	–	bdu_fstec
CNVD	Multiple Marel Products Security Bypass Vulnerabilities	13 Apr 201700:00	–	cnvd
CNVD	Multiple Marel Products Arbitrary File Upload Vulnerability	26 Apr 201700:00	–	cnvd
CVE	CVE-2016-9358	30 Jun 201702:35	–	cve
CVE	CVE-2017-6041	30 Jun 201702:35	–	cve
Cvelist	CVE-2016-9358	30 Jun 201702:35	–	cvelist
Cvelist	CVE-2017-6041	30 Jun 201702:35	–	cvelist
EUVD	EUVD-2016-10168	7 Oct 202500:30	–	euvd
EUVD	EUVD-2017-15109	7 Oct 202500:30	–	euvd
ICS	Marel Food Processing Systems (Update A)	4 Apr 201700:00	–	ics

Source	Link
facebook	www.facebook.com/sharer.php
us-cert	www.us-cert.gov/forms/feedback
cwe	www.cwe.mitre.org/data/definitions/259.html
us-cert	www.us-cert.gov/pdf/
us-cert	www.us-cert.gov/accessibility/
twitter	www.twitter.com/share
web	www.web.nvd.nist.gov/view/vuln/detail
us-cert	www.us-cert.gov/tlp/
us-cert	www.us-cert.gov/tlp/
ics-cert	www.ics-cert.us-cert.gov/

17 Aug 2017 00:00Current

1.2Low risk

Vulners AI Score1.2

CVSS 39.8

CVSS 210

EPSS0.02126

marel food processing hard-coded passwords unrestricted upload remote access vulnerabilities ics-cert